HP-UX PHSS_34170 : HP-UX VirtualVault running Apache 1.3.X Remote Unauthorized Access (HPSBUX02101 SSRT051128 rev.1)
Medium Nessus Plugin ID 21110
SynopsisThe remote HP-UX host is missing a security-related patch.
Descriptions700_800 11.04 Virtualvault 4.6 IWS update :
A security vulnerability has been identified in Apache HTTP server versions prior to Apache 1.3.34 that may allow HTTP Request Splitting/Spoofing attacks, resulting in remote unauthorized access.
References: Apache HTTP Server version 1.3.34 announcement.
SolutionInstall patch PHSS_34170 or subsequent.