Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ??? (338 Views)
Reply
Occasional Contributor
Anoop.S.K
Posts: 5
Registered: ‎04-09-2010
Message 1 of 2 (338 Views)

Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

Hi All ,

 

We have a problem with HP-UX Apache-based Web Server v.2.2.15.13 , it running with HP-UX Web Server Suite v.3.24 for HP SMH . IT Showing vulnerability  in TCP port 80 & 2301 [CVE-2011-3192] Dos ..

 

 

Please help,  anybody having Idea about to stop this vulnerability or how to apply patches available in Apache Site ..

 

http://wiki.apache.org/httpd/CVE-2011-3192

 

  http://www.apache.org/dist/httpd/patches/apply_to_2.2.14/

Honored Contributor
Duncan Edmonstone
Posts: 5,684
Registered: ‎08-05-2000
Message 2 of 2 (330 Views)

Re: Vulnerability CVE-2011-3192 not fixed in HP-UX Apache-based Web Server v.2.2.15.13 ???

HP tend to apply patches to Apache versions in a slightly different way to the straight Apache code - generally for any given CVE, go to http://software.hp.com and search on the CVE reference number there... I did this, and it turns out CVE-2011-3192 is fixed in HP-UX Web Server Suite v.3.24 :

 

https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=HPUXWSATW324

 

Look down the list of fixed vulnerabilities...


HTH

Duncan
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.