HP-UX PHSS_29894 : s700_800 11.04 Webproxy server 2.0 update

critical Nessus Plugin ID 16588

Synopsis

The remote HP-UX host is missing a security-related patch.

Description

s700_800 11.04 Webproxy server 2.0 update :

The remote HP-UX host is affected by multiple vulnerabilities :

- Potential Apache HTTP server vulnerabilities have been reported: CVE-2003-0545 CVE-2003-0543 CVE-2003-0544 CERT VU#935264 CERT VU#255484 CERT VU#255484 CERT VU#686224 CERT VU#732952 CERT VU#104280 http://www.openssl.org/news/secadv/20030930.txt.

- Multiple stack-based buffer overflows in mod_alias and mod_rewrite modules for Apache versions prior to 1.3.29.

Solution

Install patch PHSS_29894 or subsequent.

See Also

https://www.openssl.org/news/secadv/20030930.txt

Plugin Details

Severity: Critical

ID: 16588

File Name: hpux_PHSS_29894.nasl

Version: 1.19

Type: local

Published: 2/16/2005

Updated: 1/11/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:hp:hp-ux

Required KB Items: Host/local_checks_enabled, Host/HP-UX/version, Host/HP-UX/swlist

Exploit Ease: No known exploits are available

Patch Publication Date: 12/1/2003

Reference Information

CVE: CVE-2003-0543, CVE-2003-0544, CVE-2003-0545

BID: 8911

CWE: 119

CERT: 104280, 255484, 686224, 732952, 935264

HP: HPSBUX0310, HPSBUX0401, SSRT3622, SSRT4681