HP-UX PHSS_29892 : HPSBUX0310-284 SSRT3622 rev.3 HP-UX Apache HTTP Server Denial of Service,unauthorized access

critical Nessus Plugin ID 17509

Synopsis

The remote HP-UX host is missing a security-related patch.

Description

s700_800 11.04 Virtualvault 4.5 IWS Update :

Potential Apache HTTP server vulnerabilities have been reported:
CVE-2003-0545 CVE-2003-0543 CVE-2003-0544 CERT VU#935264 CERT VU#255484 CERT VU#255484 CERT VU#686224 CERT VU#732952 CERT VU#104280 http://www.openssl.org/news/secadv/20030930.txt.

Solution

Install patch PHSS_29892 or subsequent.

See Also

https://www.openssl.org/news/secadv/20030930.txt

Plugin Details

Severity: Critical

ID: 17509

File Name: hpux_PHSS_29892.nasl

Version: 1.23

Type: local

Published: 3/18/2005

Updated: 1/11/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:hp:hp-ux

Required KB Items: Host/local_checks_enabled, Host/HP-UX/version, Host/HP-UX/swlist

Patch Publication Date: 11/17/2003

Reference Information

CVE: CVE-2003-0543, CVE-2003-0544, CVE-2003-0545

CWE: 119

CERT: 104280, 255484, 686224, 732952, 935264

HP: HPSBUX0310, SSRT3622