| VID |
22210 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The version of the Apache Web server is older than 2.0.47. Apache 2.x versions before 2.0.47 contain various vulnerabilities which may allow an attacker to crash this Web server remotely or locally. The Apache 2.0.47 as compared to 2.0.46 contains fixes for security vulnerabilities described in CAN-2003-0192, CAN-2003-0253 and CAN-2003-0253, and it also contains bug fixes and some new features.
* Note: This check solely relied on the version number of the remote Apache server to assess this vulnerability, so this might be a false positive.
* References:
http://marc.theaimsgroup.com/?l=bugtraq&m=105776593602600&w=2
http://www.lac.co.jp/security/english/snsadv_e/66_e.html
* Platforms Affected:
Apache HTTP Server 2.x before 2.0.47
Windows Any version
UNIX/Linux Any version |
| Recommendation |
Upgrade to the latest version of Apache HTTP Server (2.0.47 later), available from the Apache Software Foundation download site, http://httpd.apache.org/download.cgi |
| Related URL |
CVE-2003-0192,CVE-2003-0253,CVE-2003-0254 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
