oval:org.mitre.oval:def:23276

Definition Id: oval:org.mitre.oval:def:23276

Oval ID:	oval:org.mitre.oval:def:23276
Title:	ELSA-2011:1392: httpd security and bug fix update (Moderate)
Description:	The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1392-01 CVE-2011-3368	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	httpd
Definition Synopsis:
Oracle Linux 5.x rpm test httpd-manual is earlier than 0:2.2.3-53.el5_7.3 AND httpd-devel is earlier than 0:2.2.3-53.el5_7.3 AND mod_ssl is earlier than 0:2.2.3-53.el5_7.3 AND httpd is earlier than 0:2.2.3-53.el5_7.3

Definition Id: oval:org.mitre.oval:def:15459

Oval ID:	oval:org.mitre.oval:def:15459
Title:	Oracle Linux 5.x
Description:	The operating system installed on the system is Oracle Linux 5.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:5	Version:	7
Platform(s):	Oracle Linux 5	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 5.x is installed
Referenced By:
oval:org.mitre.oval:def:23276