Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2007:0532
HistoryJun 26, 2007 - 12:00 a.m.

(RHSA-2007:0532) Moderate: apache security update

2007-06-2600:00:00
access.redhat.com
14

0.061 Low

EPSS

Percentile

93.5%

JSON

The Apache HTTP Server is a popular Web server.

The Apache HTTP Server did not verify that a process was an Apache child
process before sending it signals. A local attacker who has the ability to
run scripts on the Apache HTTP Server could manipulate the scoreboard and
cause arbitrary processes to be terminated, which could lead to a denial of
service. (CVE-2007-3304)

A flaw was found in the Apache HTTP Server mod_status module. Sites with
the server-status page publicly accessible and ExtendedStatus enabled were
vulnerable to a cross-site scripting attack. On Red Hat Enterprise Linux
the server-status page is not enabled by default and it is best practice to
not make this publicly available. (CVE-2006-5752)

Users of Apache should upgrade to these updated packages, which contain
backported patches to correct these issues. Users should restart Apache
after installing this update.

Related

centos 5
nessus 32
openvas 55
altlinux 9
redhat 7
oraclelinux 6
ubuntu 1
securityvulns 3
fedora 5
freebsd 1
cve 2
httpd 6
cvelist 2
veracode 2
debiancve 2
ubuntucve 2
suse 1
nvd 2
prion 1
seebug 1
gentoo 1
vmware 2
oracle 1
centos
centos
apache security update
2007-06-26 23:35:19
httpd, mod_ssl security update
2007-06-27 11:06:14
httpd, mod_ssl security update
2007-07-13 09:59:54
nessus
nessus
RHEL 2.1 : apache (RHSA-2007:0532)
2007-06-27 00:00:00
Scientific Linux Security Update : httpd on SL5.x, SL4.x i386/x86_64
2012-08-01 00:00:00
CentOS 5 : httpd (CESA-2007:0556)
2007-06-27 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-499-1)
2009-03-23 00:00:00
Mandriva Update for apache MDKSA-2007:140 (apache)
2009-04-09 00:00:00
Mandriva Update for apache MDKSA-2007:140 (apache)
2009-04-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package apache2 version 2.2.4-alt31
2007-07-05 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.4-alt30
2007-07-04 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.4-alt30
2007-07-04 00:00:00
redhat
redhat
(RHSA-2007:0556) Moderate: httpd security update
2007-06-26 00:00:00
(RHSA-2007:0557) Moderate: httpd security update
2007-07-13 00:00:00
(RHSA-2007:0662) Moderate: httpd security update
2007-07-13 00:00:00
oraclelinux
oraclelinux
Moderate: httpd security update
2007-06-26 00:00:00
httpd security, bug fix, and enhancement update
2007-11-27 00:00:00
httpd security, bug fix, and enhancement update
2007-11-19 00:00:00
ubuntu
ubuntu
Apache vulnerabilities
2007-08-17 00:00:00
securityvulns
securityvulns
[Full-disclosure] rPSA-2007-0182-1 httpd mod_ssl
2007-09-14 00:00:00
Apache httpd multiple local DoS conditions
2007-06-20 00:00:00
Oracle / Sun / MySQL / PeopleSoft applications multiple security vulnerabilities
2013-08-12 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: httpd-2.2.4-2.1.fc6
2007-07-12 22:53:51
[SECURITY] Fedora 7 Update: httpd-2.2.4-4.1.fc7
2007-06-27 03:52:42
[SECURITY] Fedora Core 5 Update: httpd-2.2.2-1.3
2007-07-02 15:01:38
freebsd
freebsd
apache -- multiple vulnerabilities
2007-09-07 00:00:00
cve
cve
CVE-2006-5752
2007-06-27 17:30:00
CVE-2007-3304
2007-06-20 22:30:00
httpd
httpd
Apache Httpd < 2.0.61 : mod_status cross-site scripting
2006-10-19 00:00:00
Apache Httpd < 1.3.39 : mod_status cross-site scripting
2006-10-19 00:00:00
Apache Httpd < 2.2.6 : mod_status cross-site scripting
2006-10-19 00:00:00
cvelist
cvelist
CVE-2006-5752
2007-06-27 17:00:00
CVE-2007-3304
2007-06-20 22:00:00
veracode
veracode
Cross-site Scripting (XSS)
2020-04-10 00:16:40
Denial Of Service (DoS)
2020-04-10 00:16:41
debiancve
debiancve
CVE-2006-5752
2007-06-27 17:30:00
CVE-2007-3304
2007-06-20 22:30:00
ubuntucve
ubuntucve
CVE-2006-5752
2007-06-27 00:00:00
CVE-2007-3304
2007-06-20 00:00:00
suse
suse
remote denial of service in apache2
2007-11-19 15:20:20
nvd
nvd
CVE-2006-5752
2007-06-27 17:30:00
CVE-2007-3304
2007-06-20 22:30:00
prion
prion
Code injection
2007-06-20 22:30:00
seebug
seebug
Apache HTTP Server WorkerθΏ›η¨‹ε€šδΈͺζœ¬εœ°ζ‹’η»ζœεŠ‘ζΌζ΄ž
2007-08-29 00:00:00
gentoo
gentoo
Apache: Multiple vulnerabilities
2007-11-07 00:00:00
vmware
vmware
VMware Hosted products update libpng and Apache HTTP Server
2009-08-20 00:00:00
VMware Hosted products update libpng and Apache HTTP Server
2009-08-20 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2013
2013-07-16 00:00:00

0.061 Low

EPSS

Percentile

93.5%

JSON
Related for RHSA-2007:0532
centos5nessus32openvas55altlinux9redhat7oraclelinux6ubuntu1securityvulns3fedora5freebsd1cve2httpd6cvelist2veracode2debiancve2ubuntucve2suse1nvd2prion1seebug1gentoo1vmware2oracle1