Boletines de Vulnerabilidades |
Múltiples vulnerabilidades en Apache 2 |
|
Clasificación de la vulnerabilidad |
|
Propiedad | Valor |
Nivel de Confianza | Oficial |
Impacto | Aumento de privilegios |
Dificultad | Experto |
Requerimientos del atacante | Acceso remoto sin cuenta a un servicio estandar |
Información sobre el sistema |
|
Propiedad | Valor |
Fabricante afectado | GNU/Linux |
Software afectado | Apache 2 |
Descripción |
|
Se han descubierto múltiples vulnerabilidades en Apache 2. Las vulnerabilidades son descritas a continuación: - CAN-2005-2700: Vulnerabilidad en mod_ssl < 2.8.24 que permite a atacantes remotos saltar ciertas restricciones de acceso. - CAN-2005-2728: Vulnerabilidad en el filtro de rango de byte en Apache 2.0 < 2.0.54 permite a atacantes remotos causar una denegación de servicio a través de una cabecera HTTP con un campo Range especialmente largo. |
|
Solución |
|
Actualización de software Apache Apache httpd 2.0.55 http://httpd.apache.org/download.cgi Debian (Apache 2) Debian Linux 3.1 Source http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5.dsc http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5.diff.gz http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54.orig.tar.gz Architecture independent http://security.debian.org/pool/updates/main/a/apache2/apache2-doc_2.0.54-5_all.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-threadpool_2.0.54-5_all.deb Alpha http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_alpha.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_alpha.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_alpha.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_alpha.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_alpha.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_alpha.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_alpha.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_alpha.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_alpha.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_alpha.deb AMD64 http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_amd64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_amd64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_amd64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_amd64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_amd64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_amd64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_amd64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_amd64.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_amd64.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_amd64.deb ARM http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_arm.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_arm.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_arm.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_arm.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_arm.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_arm.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_arm.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_arm.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_arm.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_arm.deb Intel IA-32 http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_i386.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_i386.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_i386.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_i386.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_i386.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_i386.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_i386.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_i386.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_i386.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_i386.deb Intel IA-64 http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_ia64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_ia64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_ia64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_ia64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_ia64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_ia64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_ia64.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_ia64.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_ia64.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_ia64.deb HP Precision http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_hppa.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_hppa.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_hppa.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_hppa.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_hppa.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_hppa.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_hppa.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_hppa.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_hppa.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_hppa.deb Motorola 680x0 http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_m68k.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_m68k.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_m68k.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_m68k.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_m68k.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_m68k.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_m68k.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_m68k.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_m68k.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_m68k.deb Big endian MIPS http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_mips.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_mips.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_mips.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_mips.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_mips.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_mips.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_mips.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_mips.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_mips.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_mips.deb Little endian MIPS http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_mipsel.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_mipsel.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_mipsel.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_mipsel.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_mipsel.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_mipsel.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_mipsel.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_mipsel.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_mipsel.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_mipsel.deb PowerPC http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_powerpc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_powerpc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_powerpc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_powerpc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_powerpc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_powerpc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_powerpc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_powerpc.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_powerpc.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_powerpc.deb IBM S/390 http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_s390.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_s390.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_s390.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_s390.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_s390.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_s390.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_s390.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_s390.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_s390.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_s390.deb Sun Sparc http://security.debian.org/pool/updates/main/a/apache2/apache2_2.0.54-5_sparc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-common_2.0.54-5_sparc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-perchild_2.0.54-5_sparc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-prefork_2.0.54-5_sparc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-mpm-worker_2.0.54-5_sparc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-prefork-dev_2.0.54-5_sparc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-threaded-dev_2.0.54-5_sparc.deb http://security.debian.org/pool/updates/main/a/apache2/apache2-utils_2.0.54-5_sparc.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0_2.0.54-5_sparc.deb http://security.debian.org/pool/updates/main/a/apache2/libapr0-dev_2.0.54-5_sparc.deb Debian (mod_ssl) Debian Linux 3.0 Source http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5.dsc http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5.diff.gz http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9.orig.tar.gz Architecture independent http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl-doc_2.8.9-2.5_all.deb Alpha http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_alpha.deb ARM http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_arm.deb Intel IA-32 http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_i386.deb Intel IA-64 http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_ia64.deb HP Precision http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_hppa.deb Motorola 680x0 http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_m68k.deb Big endian MIPS http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_mips.deb Little endian MIPS http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_mipsel.deb PowerPC http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_powerpc.deb IBM S/390 http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_s390.deb Sun Sparc http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.9-2.5_sparc.deb Debian Linux 3.1 Source http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1.dsc http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1.diff.gz http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22.orig.tar.gz Architecture independent http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl-doc_2.8.22-1sarge1_all.deb Alpha http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_alpha.deb AMD64 http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_amd64.deb ARM http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_arm.deb Intel IA-32 http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_i386.deb Intel IA-64 http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_ia64.deb HP Precision http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_hppa.deb Motorola 680x0 http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_m68k.deb Big endian MIPS http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_mips.deb Little endian MIPS http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_mipsel.deb PowerPC http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_powerpc.deb IBM S/390 http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_s390.deb Sun Sparc http://security.debian.org/pool/updates/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.22-1sarge1_sparc.deb Mandriva Linux Mandrakelinux 10.0/X86 10.0/RPMS/apache2-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-common-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-devel-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-manual-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-mod_cache-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-mod_dav-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-mod_deflate-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-mod_disk_cache-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-mod_file_cache-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-mod_ldap-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-mod_mem_cache-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-mod_proxy-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-mod_ssl-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-modules-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/apache2-source-2.0.48-6.11.100mdk.i586.rpm 10.0/RPMS/libapr0-2.0.48-6.11.100mdk.i586.rpm 10.0/SRPMS/apache2-2.0.48-6.11.100mdk.src.rpm Mandrakelinux 10.0/AMD64 amd64/10.0/RPMS/apache2-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-common-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-devel-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-manual-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-mod_cache-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-mod_dav-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-mod_deflate-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-mod_disk_cache-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-mod_file_cache-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-mod_ldap-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-mod_mem_cache-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-mod_proxy-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-mod_ssl-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-modules-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/apache2-source-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/RPMS/lib64apr0-2.0.48-6.11.100mdk.amd64.rpm amd64/10.0/SRPMS/apache2-2.0.48-6.11.100mdk.src.rpm Mandrakelinux 10.1/X86 10.1/RPMS/apache2-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-common-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-devel-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-manual-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-mod_cache-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-mod_dav-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-mod_deflate-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-mod_disk_cache-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-mod_file_cache-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-mod_ldap-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-mod_mem_cache-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-mod_proxy-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-mod_ssl-2.0.50-4.3.101mdk.i586.rpm 10.1/RPMS/apache2-modules-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-source-2.0.50-7.4.101mdk.i586.rpm 10.1/RPMS/apache2-worker-2.0.50-7.4.101mdk.i586.rpm 10.1/SRPMS/apache2-2.0.50-7.4.101mdk.src.rpm 10.1/SRPMS/apache2-mod_ssl-2.0.50-4.3.101mdk.src.rpm Mandrakelinux 10.1/X86_64 x86_64/10.1/RPMS/apache2-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-common-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-devel-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-manual-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-mod_cache-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-mod_dav-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-mod_deflate-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-mod_disk_cache-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-mod_file_cache-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-mod_ldap-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-mod_mem_cache-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-mod_proxy-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-mod_ssl-2.0.50-4.3.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-modules-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-source-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/RPMS/apache2-worker-2.0.50-7.4.101mdk.x86_64.rpm x86_64/10.1/SRPMS/apache2-2.0.50-7.4.101mdk.src.rpm x86_64/10.1/SRPMS/apache2-mod_ssl-2.0.50-4.3.101mdk.src.rpm Corporate Server 3.0/X86 corporate/3.0/RPMS/apache2-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/RPMS/apache2-common-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/RPMS/apache2-manual-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/RPMS/apache2-mod_cache-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/RPMS/apache2-mod_dav-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/RPMS/apache2-mod_disk_cache-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/RPMS/apache2-mod_ldap-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/RPMS/apache2-mod_proxy-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/RPMS/apache2-mod_ssl-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/RPMS/apache2-modules-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/RPMS/libapr0-2.0.48-6.11.C30mdk.i586.rpm corporate/3.0/SRPMS/apache2-2.0.48-6.11.C30mdk.src.rpm Corporate Server 3.0/X86_64 x86_64/corporate/3.0/RPMS/apache2-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/RPMS/apache2-common-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/RPMS/apache2-manual-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/RPMS/apache2-mod_cache-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/RPMS/apache2-mod_dav-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/RPMS/apache2-mod_disk_cache-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/RPMS/apache2-mod_ldap-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/RPMS/apache2-mod_proxy-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/RPMS/apache2-mod_ssl-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/RPMS/apache2-modules-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/RPMS/lib64apr0-2.0.48-6.11.C30mdk.x86_64.rpm x86_64/corporate/3.0/SRPMS/apache2-2.0.48-6.11.C30mdk.src.rpm Multi Network Firewall 2.0/X86 mnf/2.0/RPMS/apache2-2.0.48-6.11.M20mdk.i586.rpm mnf/2.0/RPMS/apache2-common-2.0.48-6.11.M20mdk.i586.rpm mnf/2.0/RPMS/apache2-mod_cache-2.0.48-6.11.M20mdk.i586.rpm mnf/2.0/RPMS/apache2-mod_proxy-2.0.48-6.11.M20mdk.i586.rpm mnf/2.0/RPMS/apache2-mod_ssl-2.0.48-6.11.M20mdk.i586.rpm mnf/2.0/RPMS/apache2-modules-2.0.48-6.11.M20mdk.i586.rpm mnf/2.0/RPMS/libapr0-2.0.48-6.11.M20mdk.i586.rpm mnf/2.0/SRPMS/apache2-2.0.48-6.11.M20mdk.src.rpm Mandrivalinux LE2005/X86 10.2/RPMS/apache2-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-common-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-devel-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-manual-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-mod_cache-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-mod_dav-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-mod_deflate-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-mod_disk_cache-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-mod_file_cache-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-mod_ldap-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-mod_mem_cache-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-mod_proxy-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-mod_ssl-2.0.53-8.2.102mdk.i586.rpm 10.2/RPMS/apache2-modules-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-peruser-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-source-2.0.53-9.2.102mdk.i586.rpm 10.2/RPMS/apache2-worker-2.0.53-9.2.102mdk.i586.rpm 10.2/SRPMS/apache2-2.0.53-9.2.102mdk.src.rpm 10.2/SRPMS/apache2-mod_ssl-2.0.53-8.2.102mdk.src.rpm Mandrivalinux LE2005/X86_64 x86_64/10.2/RPMS/apache2-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-common-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-devel-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-manual-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-mod_cache-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-mod_dav-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-mod_deflate-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-mod_disk_cache-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-mod_file_cache-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-mod_ldap-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-mod_mem_cache-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-mod_proxy-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-mod_ssl-2.0.53-8.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-modules-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-peruser-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-source-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/RPMS/apache2-worker-2.0.53-9.2.102mdk.x86_64.rpm x86_64/10.2/SRPMS/apache2-2.0.53-9.2.102mdk.src.rpm x86_64/10.2/SRPMS/apache2-mod_ssl-2.0.53-8.2.102mdk.src.rpm SGI SGI ProPack 3 Service Pack 6 Parche 10212 http://support.sgi.com/ Red Hat Red Hat Desktop (v. 3) / SRPMS httpd-2.0.46-46.3.ent.src.rpm Red Hat Desktop (v. 3) / IA-32 httpd-2.0.46-46.3.ent.i386.rpm httpd-devel-2.0.46-46.3.ent.i386.rpm mod_ssl-2.0.46-46.3.ent.i386.rpm Red Hat Desktop (v. 3) / x86_64 httpd-2.0.46-46.3.ent.x86_64.rpm httpd-devel-2.0.46-46.3.ent.x86_64.rpm mod_ssl-2.0.46-46.3.ent.x86_64.rpm Red Hat Desktop (v. 4) / SRPMS httpd-2.0.52-12.2.ent.src.rpm Red Hat Desktop (v. 4) / IA-32 httpd-2.0.52-12.2.ent.i386.rpm httpd-devel-2.0.52-12.2.ent.i386.rpm httpd-manual-2.0.52-12.2.ent.i386.rpm httpd-suexec-2.0.52-12.2.ent.i386.rpm mod_ssl-2.0.52-12.2.ent.i386.rpm Red Hat Desktop (v. 4) / x86_64 httpd-2.0.52-12.2.ent.x86_64.rpm httpd-devel-2.0.52-12.2.ent.x86_64.rpm httpd-manual-2.0.52-12.2.ent.x86_64.rpm httpd-suexec-2.0.52-12.2.ent.x86_64.rpm mod_ssl-2.0.52-12.2.ent.x86_64.rpm Red Hat Enterprise Linux AS (v. 3) / SRPMS httpd-2.0.46-46.3.ent.src.rpm Red Hat Enterprise Linux AS (v. 3) / IA-32 httpd-2.0.46-46.3.ent.i386.rpm httpd-devel-2.0.46-46.3.ent.i386.rpm mod_ssl-2.0.46-46.3.ent.i386.rpm Red Hat Enterprise Linux AS (v. 3) / IA-64 httpd-2.0.46-46.3.ent.ia64.rpm httpd-devel-2.0.46-46.3.ent.ia64.rpm mod_ssl-2.0.46-46.3.ent.ia64.rpm Red Hat Enterprise Linux AS (v. 3) / PPC httpd-2.0.46-46.3.ent.ppc.rpm httpd-devel-2.0.46-46.3.ent.ppc.rpm mod_ssl-2.0.46-46.3.ent.ppc.rpm Red Hat Enterprise Linux AS (v. 3) / s390 httpd-2.0.46-46.3.ent.s390.rpm httpd-devel-2.0.46-46.3.ent.s390.rpm mod_ssl-2.0.46-46.3.ent.s390.rpm Red Hat Enterprise Linux AS (v. 3) / s390x httpd-2.0.46-46.3.ent.s390x.rpm httpd-devel-2.0.46-46.3.ent.s390x.rpm mod_ssl-2.0.46-46.3.ent.s390x.rpm Red Hat Enterprise Linux AS (v. 3) / x86_64 httpd-2.0.46-46.3.ent.x86_64.rpm httpd-devel-2.0.46-46.3.ent.x86_64.rpm mod_ssl-2.0.46-46.3.ent.x86_64.rpm Red Hat Enterprise Linux AS (v. 4) / SRPMS httpd-2.0.52-12.2.ent.src.rpm Red Hat Enterprise Linux AS (v. 4) / IA-32 httpd-2.0.52-12.2.ent.i386.rpm httpd-devel-2.0.52-12.2.ent.i386.rpm httpd-manual-2.0.52-12.2.ent.i386.rpm httpd-suexec-2.0.52-12.2.ent.i386.rpm mod_ssl-2.0.52-12.2.ent.i386.rpm Red Hat Enterprise Linux AS (v. 4) / IA-64 httpd-2.0.52-12.2.ent.ia64.rpm httpd-devel-2.0.52-12.2.ent.ia64.rpm httpd-manual-2.0.52-12.2.ent.ia64.rpm httpd-suexec-2.0.52-12.2.ent.ia64.rpm mod_ssl-2.0.52-12.2.ent.ia64.rpm Red Hat Enterprise Linux AS (v. 4) / PPC httpd-2.0.52-12.2.ent.ppc.rpm httpd-devel-2.0.52-12.2.ent.ppc.rpm httpd-manual-2.0.52-12.2.ent.ppc.rpm httpd-suexec-2.0.52-12.2.ent.ppc.rpm mod_ssl-2.0.52-12.2.ent.ppc.rpm Red Hat Enterprise Linux AS (v. 4) / s390 httpd-2.0.52-12.2.ent.s390.rpm httpd-devel-2.0.52-12.2.ent.s390.rpm httpd-manual-2.0.52-12.2.ent.s390.rpm httpd-suexec-2.0.52-12.2.ent.s390.rpm mod_ssl-2.0.52-12.2.ent.s390.rpm Red Hat Enterprise Linux AS (v. 4) / s390x httpd-2.0.52-12.2.ent.s390x.rpm httpd-devel-2.0.52-12.2.ent.s390x.rpm httpd-manual-2.0.52-12.2.ent.s390x.rpm httpd-suexec-2.0.52-12.2.ent.s390x.rpm mod_ssl-2.0.52-12.2.ent.s390x.rpm Red Hat Enterprise Linux AS (v. 4) / x86_64 httpd-2.0.52-12.2.ent.x86_64.rpm httpd-devel-2.0.52-12.2.ent.x86_64.rpm httpd-manual-2.0.52-12.2.ent.x86_64.rpm httpd-suexec-2.0.52-12.2.ent.x86_64.rpm mod_ssl-2.0.52-12.2.ent.x86_64.rpm Red Hat Enterprise Linux ES (v. 3) / SRPMS httpd-2.0.46-46.3.ent.src.rpm Red Hat Enterprise Linux ES (v. 3) / IA-32 httpd-2.0.46-46.3.ent.i386.rpm httpd-devel-2.0.46-46.3.ent.i386.rpm mod_ssl-2.0.46-46.3.ent.i386.rpm Red Hat Enterprise Linux ES (v. 3) / IA-64 httpd-2.0.46-46.3.ent.ia64.rpm httpd-devel-2.0.46-46.3.ent.ia64.rpm mod_ssl-2.0.46-46.3.ent.ia64.rpm Red Hat Enterprise Linux ES (v. 3) / x86_64 httpd-2.0.46-46.3.ent.x86_64.rpm httpd-devel-2.0.46-46.3.ent.x86_64.rpm mod_ssl-2.0.46-46.3.ent.x86_64.rpm Red Hat Enterprise Linux ES (v. 4) / SRPMS httpd-2.0.52-12.2.ent.src.rpm Red Hat Enterprise Linux ES (v. 4) / IA-32 httpd-2.0.52-12.2.ent.i386.rpm httpd-devel-2.0.52-12.2.ent.i386.rpm httpd-manual-2.0.52-12.2.ent.i386.rpm httpd-suexec-2.0.52-12.2.ent.i386.rpm mod_ssl-2.0.52-12.2.ent.i386.rpm Red Hat Enterprise Linux ES (v. 4) / IA-64 httpd-2.0.52-12.2.ent.ia64.rpm httpd-devel-2.0.52-12.2.ent.ia64.rpm httpd-manual-2.0.52-12.2.ent.ia64.rpm httpd-suexec-2.0.52-12.2.ent.ia64.rpm mod_ssl-2.0.52-12.2.ent.ia64.rpm Red Hat Enterprise Linux ES (v. 4) / x86_64 httpd-2.0.52-12.2.ent.x86_64.rpm httpd-devel-2.0.52-12.2.ent.x86_64.rpm httpd-manual-2.0.52-12.2.ent.x86_64.rpm httpd-suexec-2.0.52-12.2.ent.x86_64.rpm mod_ssl-2.0.52-12.2.ent.x86_64.rpm Red Hat Enterprise Linux WS (v. 3) / SRPMS httpd-2.0.46-46.3.ent.src.rpm Red Hat Enterprise Linux WS (v. 3) / IA-32 httpd-2.0.46-46.3.ent.i386.rpm httpd-devel-2.0.46-46.3.ent.i386.rpm mod_ssl-2.0.46-46.3.ent.i386.rpm Red Hat Enterprise Linux WS (v. 3) / IA-64 httpd-2.0.46-46.3.ent.ia64.rpm httpd-devel-2.0.46-46.3.ent.ia64.rpm mod_ssl-2.0.46-46.3.ent.ia64.rpm Red Hat Enterprise Linux WS (v. 3) / x86_64 httpd-2.0.46-46.3.ent.x86_64.rpm httpd-devel-2.0.46-46.3.ent.x86_64.rpm mod_ssl-2.0.46-46.3.ent.x86_64.rpm Red Hat Enterprise Linux WS (v. 4) / SRPMS httpd-2.0.52-12.2.ent.src.rpm Red Hat Enterprise Linux WS (v. 4) / IA-32 httpd-2.0.52-12.2.ent.i386.rpm httpd-devel-2.0.52-12.2.ent.i386.rpm httpd-manual-2.0.52-12.2.ent.i386.rpm httpd-suexec-2.0.52-12.2.ent.i386.rpm mod_ssl-2.0.52-12.2.ent.i386.rpm Red Hat Enterprise Linux WS (v. 4) / IA-64 httpd-2.0.52-12.2.ent.ia64.rpm httpd-devel-2.0.52-12.2.ent.ia64.rpm httpd-manual-2.0.52-12.2.ent.ia64.rpm httpd-suexec-2.0.52-12.2.ent.ia64.rpm mod_ssl-2.0.52-12.2.ent.ia64.rpm Red Hat Enterprise Linux WS (v. 4) / x86_64 httpd-2.0.52-12.2.ent.x86_64.rpm httpd-devel-2.0.52-12.2.ent.x86_64.rpm httpd-manual-2.0.52-12.2.ent.x86_64.rpm httpd-suexec-2.0.52-12.2.ent.x86_64.rpm mod_ssl-2.0.52-12.2.ent.x86_64.rpm HP HP-UX B.11.00 / Apache v.2.0.55.00 HP-UX B.11.04 / PHSS_34123 Virtualvault 4.7 OWS (Apache 2.x) HP-UX B.11.04 / PHSS_34163 Webproxy server 2.1 (Apache 2.x) HP-UX B.11.11 (IPv4) / Apache v.2.0.55.00 HP-UX B.11.11 (IPv6) / Apache v.2.0.55.00 HP-UX B.11.22 / Actualizar a HP-UX B.11.23 HP-UX B.11.23 / Apache v.2.0.55.00 http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=HPUXWSATW213 Apple Tiger Client http://www.apple.com/support/downloads/securityupdate2005009tigerclient.html Tiger Server http://www.apple.com/support/downloads/securityupdate2005009tigerserver.html Panther Client http://www.apple.com/support/downloads/securityupdate2005009pantherclient.html Panther Server http://www.apple.com/support/downloads/securityupdate2005009pantherserver.html Sun Solaris 8 / SPARC / patch 116973-03 Solaris 8 / x86 / patch 116974-03 Solaris 9 / SPARC / patch 113146-07 Solaris 9 / x86 / patch 114145-06 Solaris 10 / SPARC / patch 122911-01 Solaris 10 / x86 / patch 122912-01 http://sunsolve.sun.com/pub-cgi/show.pl?target=patchpage Sun (102198) Solaris 10 / SPARC / patch 120543-02 Solaris 10 / x86 / patch 120544-02 http://sunsolve.sun.com/pub-cgi/show.pl?target=patchpage Suse Linux Las actualizaciones pueden descargarse mediante YAST o del servidor FTP oficial de Suse Linux |
|
Identificadores estándar |
|
Propiedad | Valor |
CVE |
CAN-2005-2700 CAN-2005-2728 |
BID | |
Recursos adicionales |
|
Overview of security vulnerabilities in Apache httpd 2.0 http://httpd.apache.org/security/vulnerabilities_20.html Debian Security Advisory (DSA 805-1) http://lists.debian.org/debian-security-announce/debian-security-announce-2005/msg00195.html Debian Security Advisory (DSA 807-1) http://lists.debian.org/debian-security-announce/debian-security-announce-2005/msg00197.html Mandriva Security Advisories (MDKSA-2005:161) http://www.mandriva.com/security/advisories?name=MDKSA-2005:161 SGI Security advisory (20050901-01-U) ftp://patches.sgi.com/support/free/security/advisories/20050901-01-U.asc Red Hat Security Advisory (RHSA-2005:608-7) https://rhn.redhat.com/errata/RHSA-2005-608.html HP SECURITY BULLETIN (SSRT051043) http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX01232 HP SECURITY BULLETIN (HPSBUX02074) http://www4.itrc.hp.com/service/cki/docDisplay.do?docId=c00555254 Apple Security Update (2005-009) http://docs.info.apple.com/article.html?artnum=302847 Sun Alert Notification (102197) http://sunsolve.sun.com/search/document.do?assetkey=1-26-102197-1 Sun Alert Notification (102198) http://sunsolve.sun.com/search/document.do?assetkey=1-26-102198-1 SUSE Security Advisory (SUSE-SA:2006:051) http://www.novell.com/linux/security/advisories/2006_51_apache.html |
Histórico de versiones |
||
Versión | Comentario | Fecha |
1.0 | Aviso emitido | 2005-09-14 |
1.1 | Aviso emitido por SGI (20050901-01-U). Aviso emitido por Red Hat (RHSA-2005:608-7) | 2005-09-16 |
1.2 | Aviso emitido por HP (SSRT051043) | 2005-10-11 |
1.3 | Publicado Apache httpd 2.0.55 | 2005-10-31 |
1.4 | Aviso emitido por HP (HPSBUX02074) | 2005-11-21 |
1.5 | Aviso emitido por Apple (2005-009) | 2005-11-30 |
1.6 | Avisos emitidos por Sun (102197, 102198) | 2006-03-03 |
1.7 | Aviso actualizado por HP (HPSBUX02074) | 2006-03-17 |
1.8 | Avisos actualizado por Sun (102198) | 2006-04-13 |
1.9 | Aviso actualizado por Sun (102197) | 2006-06-19 |
1.10 | Avisos actualizado por Sun (102197) | 2006-07-14 |
1.11 | Aviso actualizado por Sun (102197) | 2006-08-16 |
1.12 | Aviso actualizado por Sun (102198) | 2006-09-12 |
1.13 | Aviso emitido por Suse (SUSE-SA:2006:051) | 2006-09-12 |