oval:org.mitre.oval:def:23761
Definition Id: oval:org.mitre.oval:def:23761 | |||
Oval ID: | oval:org.mitre.oval:def:23761 | ||
Title: | ELSA-2011:1391: httpd security and bug fix update (Moderate) | ||
Description: | The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2011:1391-01 CVE-2011-3348 CVE-2011-3368 | Version: | 13 |
Platform(s): | Oracle Linux 6 | Product(s): | httpd |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:16594 | |||
Oval ID: | oval:org.mitre.oval:def:16594 | ||
Title: | Oracle Linux 6.x | ||
Description: | The operating system installed on the system is Oracle Linux 6.x | ||
Family: | unix | Class: | inventory |
Reference(s): | cpe:/o:oracle:linux:6 | Version: | 5 |
Platform(s): | Oracle Linux 6 | Product(s): | |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:23761 |