Apache 1.3.41 and CVE-2012-0053

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: Apache 1.3.41 and CVE-2012-0053
From: yaberger@xxxxxxxxxx
Date: Fri, 3 May 2013 09:01:13 -0400
Reply-to: users@xxxxxxxxxxxxxxxx

Hi,

We are trying to validate if Apache 1.3.41 is vulnerable to CVE-2012-0053.
Tenant Nessus vulnerability scanner seems to think it's but according to the advisory on Apache website and NIST vulnerability database, only 2.2.0 to 2.2.21 are vulnerable to this.
I know Apache 1.3.x is not supported anymore but the security advisories are usually listed as "not fixed" on Apache Security Reports webpage.
Also, the advisory doesn't affect Apache 2.0.x

With all this being said, I believe it does not affect 1.3.x but I'm looking for more opinions.

Best regards,

Yannick Bergeron

Prev by Date: Apache2 and Tomcat load balancing | Timeouts: request, connection, cping/cpong
Next by Date: AuthnProviderAlias kerberos configuration?
Previous by thread: Rewrite rule redirection from http to https does not work.
Next by thread: AuthnProviderAlias kerberos configuration?
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]