|
HP-UX / HP Virtualvault Apache Multiple Vulnerabilities
|
|
|
|
|
Secunia Advisory:
|
SA17600
|
|
|
Release Date:
|
2005-11-17
|
|
Last Update:
|
2006-03-21
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Security Bypass
Cross Site Scripting
Manipulation of data
Privilege escalation
DoS
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | HP-UX 11.x
|
| | Software: | HP VirtualVault 4.x
HP Webproxy 2.x
|
| | CVE reference: | CVE-2005-1268 (Secunia mirror)
CVE-2005-2088 (Secunia mirror)
CVE-2005-2491 (Secunia mirror)
CVE-2005-2728 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
HP has acknowledged some vulnerabilities in Apache for HP-UX / Virtualvault, which can be exploited by malicious, local users to gain escalated privileges via a specially crafted ".htaccess" file, and by malicious people to conduct HTTP request smuggling attacks and to cause a DoS (Denial of Service).
For more information:
SA16688
SA14530
SA16559
The vulnerabilities have been reported in the following products.
* HP-UX B.11.00, B.11.11, B.11.23 running Apache-based Web Server prior to version 2.0.55.
* HP-UX B.11.04 with Virtualvault 4.7 running Apache 2.x Web Server.
An off-by-one error in mod_ssl has also been fixed.
Solution:
Update Apache to the latest version.
http://h20293.www2.hp.com/cgi-bin/swd...ductInfo.pl?productNumber=HPUXWSSUITE
-- For IPv4 --
HP-UX B.11.00 / B.11.11:
Update to Apache revision A.2.0.55.00 or later.
-- For IPv6 --
HP-UX B.11.11 / B.11.23:
Update to Apache revision B.2.0.55.00 or later.
-- Virtualvault / Webproxy --
HP-UX B.11.04 Virtualvault A.04.70 (Apache 2.x):
(VaultWS.WS-CORE)
Install PHSS_34123 or later.
HP-UX B.11.04 HP Webproxy A.02.10 (Apache 2.x):
(HP_Webproxy.HPWEB-PX-CORE)
Install PHSS_34163 or later.
Changelog:
2006-03-21: Added patch information for Virtualvault.
Original Advisory:
HPSBUX02074 SSRT051251:
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00555254
Other References:
SA16688:
http://secunia.com/advisories/16688/
SA14530:
http://secunia.com/advisories/14530/
SA16559:
http://secunia.com/advisories/16559/
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
187 Related Secunia Security Advisories, displaying 10
|
|
|
1. HP-UX update for bind
|
|
2. HP-UX HP CIFS Server Multiple Vulnerabilities
|
|
3. HP-UX update for Apache with PHP
|
|
4. HP-UX Secure Shell Unauthorized Access Vulnerability
|
|
5. HP-UX useradd Security Bypass
|
|
6. HP-UX ftp Server Unspecified Denial of Service
|
|
7. HP-UX LDAP-UX Privilege Escalation Vulnerability
|
|
8. HP-UX update for Netscape Directory Server
|
|
9. HP-UX update for Apache with PHP
|
|
10. HP-UX WBEM Services OpenPegasus PAM Module Buffer Overflows
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
