HPE Community
Operating System - HP-UX
1820553 Members
3754 Online
109626 Solutions
New Discussion

Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

 
Anoop.S.K
Occasional Contributor

‎11-12-2012 07:18 AM

‎11-12-2012 07:18 AM

Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

Hi All ,

 

We have a problem with HP-UX Apache-based Web Server v.2.2.15.13 , it running with HP-UX Web Server Suite v.3.24 for HP SMH . IT Showing vulnerability  in TCP port 80 & 2301 [CVE-2011-3192] Dos ..

 

 

Please help,  anybody having Idea about to stop this vulnerability or how to apply patches available in Apache Site ..

 

http://wiki.apache.org/httpd/CVE-2011-3192

 

  http://www.apache.org/dist/httpd/patches/apply_to_2.2.14/

0 Kudos
Reply
1 REPLY 1
Duncan Edmonstone
HPE Pro

‎11-12-2012 09:42 AM

‎11-12-2012 09:42 AM

Re: Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

HP tend to apply patches to Apache versions in a slightly different way to the straight Apache code - generally for any given CVE, go to http://software.hp.com and search on the CVE reference number there... I did this, and it turns out CVE-2011-3192 is fixed in HP-UX Web Server Suite v.3.24 :

 

https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=HPUXWSATW324

 

Look down the list of fixed vulnerabilities...


I am an HPE Employee
Accept or Kudo
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.