HP-UX PHSS_30055 : s700_800 11.04 Virtualvault 4.7 IWS update

critical Nessus Plugin ID 17511

Synopsis

The remote HP-UX host is missing a security-related patch.

Description

s700_800 11.04 Virtualvault 4.7 IWS update :

The remote HP-UX host is affected by multiple vulnerabilities :

- Multiple stack-based buffer overflows in mod_alias and mod_rewrite modules for Apache versions prior to 1.3.29.

- Potential Apache HTTP server vulnerabilities have been reported: CVE-2003-0545 CVE-2003-0543 CVE-2003-0544 CERT VU#935264 CERT VU#255484 CERT VU#255484 CERT VU#686224 CERT VU#732952 CERT VU#104280 http://www.openssl.org/news/secadv/20030930.txt.

Solution

Install patch PHSS_30055 or subsequent.

See Also

https://www.openssl.org/news/secadv/20030930.txt

Plugin Details

Severity: Critical

ID: 17511

File Name: hpux_PHSS_30055.nasl

Version: 1.22

Type: local

Published: 3/18/2005

Updated: 1/11/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/o:hp:hp-ux

Required KB Items: Host/local_checks_enabled, Host/HP-UX/version, Host/HP-UX/swlist

Exploit Ease: No known exploits are available

Patch Publication Date: 12/5/2003

Reference Information

CVE: CVE-2003-0543, CVE-2003-0544, CVE-2003-0545

BID: 8911

CWE: 119

CERT: 104280, 255484, 686224, 732952, 935264

HP: HPSBUX0310, HPSBUX0401, SSRT3622, SSRT4681