Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2002-126: apache


Vulnerability Assessment Details

RHSA-2002-126: apache

Vulnerability Assessment Summary
Check for the version of the apache packages

Detailed Explanation for this Vulnerability Assessment


The Apache Web server contains a security vulnerability which can be used
to launch a denial of service (DoS) attack or, in some cases, permit remote
code execution.

Versions of the Apache Web server up to and including 1.3.24 contain a bug
in the routines which deal with requests using "chunked" encoding.
A carefully crafted invalid request can cause an Apache child process to
call the memcpy() function in a way that will write past the end of its
buffer, corrupting the stack. On some platforms this can be remotely
exploited -- permiting arbitrary code to be run on the server.

The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2002-0392 to this issue.

All users of Apache should update to these errata packages to correct this
security issue.




Solution : http://rhn.redhat.com/errata/RHSA-2002-126.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors


RAM128 (GW4208B) -- 128kB RAM for Apple II ][ -- Saturn 128 compatible picture

RAM128 (GW4208B) -- 128kB RAM for Apple II ][ -- Saturn 128 compatible

$30.00



Team T-FORCE VULCAN Z 16GB (2 x 8GB) 288-Pin PC RAM DDR4 3200 (PC4 25600) Intel picture

Team T-FORCE VULCAN Z 16GB (2 x 8GB) 288-Pin PC RAM DDR4 3200 (PC4 25600) Intel

$35.99



A-Tech 8GB DDR3 1600 PC3-12800 Laptop SODIMM 204-Pin Memory RAM PC3L DDR3L 1x 8G picture

A-Tech 8GB DDR3 1600 PC3-12800 Laptop SODIMM 204-Pin Memory RAM PC3L DDR3L 1x 8G

$13.99



HyperX FURY RAM DDR4 16GB 8GB 32GB 4GB 3200 2666 2400 2133 Desktop Memory DIMM picture

HyperX FURY RAM DDR4 16GB 8GB 32GB 4GB 3200 2666 2400 2133 Desktop Memory DIMM

$15.85



A-Tech 8GB PC3-12800 Desktop DDR3 1600 MHz Non ECC 240-Pin DIMM Memory RAM 1x 8G picture

A-Tech 8GB PC3-12800 Desktop DDR3 1600 MHz Non ECC 240-Pin DIMM Memory RAM 1x 8G

$13.99



A-Tech 16GB 2 x 8GB PC3-12800 Laptop SODIMM DDR3 1600 Memory RAM PC3L 16G DDR3L picture

A-Tech 16GB 2 x 8GB PC3-12800 Laptop SODIMM DDR3 1600 Memory RAM PC3L 16G DDR3L

$27.98



Kingston HyperX FURY DDR3 8GB 16GB 32G 1600 1866 1333 Desktop Memory RAM DIMM picture

Kingston HyperX FURY DDR3 8GB 16GB 32G 1600 1866 1333 Desktop Memory RAM DIMM

$39.95



G.SKILL Trident Z RGB 16GB 2x 8GB 3200MHz DDR4 Desktop RAM F4-3200C16S-8GTZR picture

G.SKILL Trident Z RGB 16GB 2x 8GB 3200MHz DDR4 Desktop RAM F4-3200C16S-8GTZR

$38.99



Crucial 16GB (2x 8GB) Kit DDR3 1600MHz PC3-12800 UDIMM Desktop 240-Pin CL11 RAM picture

Crucial 16GB (2x 8GB) Kit DDR3 1600MHz PC3-12800 UDIMM Desktop 240-Pin CL11 RAM

$21.95



Corsair Vengeance 32GB 16GB 8GB DDR3 1600MHz 1866MHz 2133MHz 2400MHz Memory LOT picture

Corsair Vengeance 32GB 16GB 8GB DDR3 1600MHz 1866MHz 2133MHz 2400MHz Memory LOT

$79.99



Discussions

No Discussions have been posted on this vulnerability.