Apache 1.3.x Vulnerabilities...

Dave Cast · ‎06-02-2008

I have several Hpux servers running Apache 1.3.19 with a garden variety of security vulnerabilities
including:

Multiview directory listing
Root directory access
0x1a Character logging Dos
HtDigest command execution
Httpd scoreboard modification
mod_alias and mod_rewrite buffer overflow
User enumeration

The servers that have these vulnerabilities are production servers and we are trying to comply with a recent security audit - I have looked extensively for patches but to no avail...

Were there ever patches released for these vulnerabilities? OR were they solved with the release of apache 2.x?

I realize this is an old version of apache -

Today is different and tomorrow the same.

Bill Hassell · ‎06-02-2008

"old version" is correct. There are no patches, instead, you install the current version (2.19 if you're running HP-UX 11.23 or later. Get the latest version from software.hp.com

Bill Hassell, sysadmin

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Apache 1.3.x Vulnerabilities...

Apache 1.3.x Vulnerabilities...

Re: Apache 1.3.x Vulnerabilities...