Skip to main content

Apache HTTPD Multiple Vulnerabilities

Last Update Date: 22 Dec 2016 09:16 Release Date: 22 Dec 2016 2819 Views

RISK: Medium Risk

TYPE: Servers - Web Servers

TYPE: Web Servers

Multiple vulnerabilities were identified in Apache HTTPD. A remote user can access or modify session data. A remote user can cause the target service to crash. A remote user can conduct HTTP response splitting attacks.


Impact

  • Cross-Site Scripting
  • Denial of Service
  • Information Disclosure
  • Spoofing

System / Technologies affected

  • Versions prior to 2.4.25

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 2.4.25

Vulnerability Identifier


Source


Related Link