oval:org.mitre.oval:def:8695
Definition Id: oval:org.mitre.oval:def:8695 | |||
Oval ID: | oval:org.mitre.oval:def:8695 | ||
Title: | Apache HTTP Server request header information disclosure | ||
Description: | The ap_read_request function in server/protocol.c in the Apache HTTP Server 2.2.x before 2.2.15, when a multithreaded MPM is used, does not properly handle headers in subrequests in certain circumstances involving a parent request that has a body, which might allow remote attackers to obtain sensitive information via a crafted request that triggers access to memory locations associated with an earlier request. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-0434 | Version: | 7 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Apache |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:8550 | |||
Oval ID: | oval:org.mitre.oval:def:8550 | ||
Title: | Apache HTTP Server 2.2.x is installed on the system | ||
Description: | Apache HTTP Server 2.2.x is installed on the system | ||
Family: | windows | Class: | inventory |
Reference(s): | cpe:/a:apache:http_server:2.2 | Version: | 4 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows 7 | Product(s): | Apache |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:8695 |