Simpler Navigation for Servers and Operating Systems
Completed: a much simpler Servers and Operating Systems section of the Community. We combined many of the older boards, so you won't have to click through so many levels to get at the information you need. Check the consolidated boards here as many sub-forums are now single boards.
Security
cancel
Showing results for 
Search instead for 
Did you mean: 

Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

Anoop.S.K
Occasional Contributor

Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

Hi All ,

 

We have a problem with HP-UX Apache-based Web Server v.2.2.15.13 , it running with HP-UX Web Server Suite v.3.24 for HP SMH . IT Showing vulnerability  in TCP port 80 & 2301 [CVE-2011-3192] Dos ..

 

 

Please help,  anybody having Idea about to stop this vulnerability or how to apply patches available in Apache Site ..

 

http://wiki.apache.org/httpd/CVE-2011-3192

 

  http://www.apache.org/dist/httpd/patches/apply_to_2.2.14/

1 REPLY
Duncan Edmonstone
Honored Contributor

Re: Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

HP tend to apply patches to Apache versions in a slightly different way to the straight Apache code - generally for any given CVE, go to http://software.hp.com and search on the CVE reference number there... I did this, and it turns out CVE-2011-3192 is fixed in HP-UX Web Server Suite v.3.24 :

 

https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=HPUXWSATW324

 

Look down the list of fixed vulnerabilities...


HTH

Duncan