Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Gain a shell remotely >> Apache-SSL overflow


Vulnerability Assessment Details

Apache-SSL overflow

Vulnerability Assessment Summary
Checks for version of Apache-SSL

Detailed Explanation for this Vulnerability Assessment

The remote host is using a version of Apache-SSL which is
older than 1.47

This version is vulnerable to a buffer overflow which,
albeit difficult to exploit, may permit a possible hacker
to obtain a shell on this host.


Solution : Upgrade to version 1.47 or newer
Network Security Threat Level: High

Networks Security ID: 4189

Vulnerability Assessment Copyright: This script is Copyright (C) 2002 Renaud Deraison

Cables, Connectors

Rosewill M6 Server Cage Nuts and Mounting Screws (120-pk)
$30.99
Rosewill M6 Server Cage Nuts and Mounting Screws (120-pk) pictureIntel atom mini itx board with 4 LAN d525mf for firewall/network server/router
$106.17
Intel atom mini itx board with 4 LAN d525mf for firewall/network server/router  pictureFirewall/Network Server/Router mini itx board 4LAN J1900MF intel J1900 quad core
$128.05
Firewall/Network Server/Router mini itx board 4LAN J1900MF intel J1900 quad core pictureStarTech RDA1U Rail Depth Adapter Kit for Server Racks - 1U
$16.57
StarTech RDA1U Rail Depth Adapter Kit for Server Racks - 1U picture


Discussions

No Discussions have been posted on this vulnerability.