Lucene search
F5SOL15899HistoryDec 08, 2014 - 12:00 a.m.
SOL15899 - Multiple Apache vulnerabilities CVE-2012-4558, CVE-2012-0883, CVE-2011-3348, and CVE-2010-1452
2014-12-0800:00:00
support.f5.com
39
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.314 Low
EPSS
Percentile
96.5%
Recommended Action
If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists.
To mitigate this vulnerability for ARX, do not enable the API functionality.
Supplemental Information
- SOL9970: Subscribing to email notifications regarding F5 products
- SOL9957: Creating a custom RSS feed to view new and updated documents
- SOL4602: Overview of the F5 security vulnerability response policy
- SOL4918: Overview of the F5 critical issue hotfix policy
- SOL167: Downloading software and firmware from F5
References
support.f5.com/kb/en-us/solutions/public/0000/100/sol167.html
support.f5.com/kb/en-us/solutions/public/4000/600/sol4602.html
support.f5.com/kb/en-us/solutions/public/4000/900/sol4918.html
support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html
support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html
Related
f5
f5
K15899 : Multiple Apache vulnerabilities CVE-2012-4558, CVE-2012-0883, CVE-2011-3348, and CVE-2010-1452
2014-12-08 00:00:00
K15865 : Apache HTTP server vulnerability CVE-2012-4558
2014-12-09 00:00:00
SOL15865 - Apache HTTP server vulnerability CVE-2012-4558
2014-11-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
openvas
openvas
Fedora Update for httpd FEDORA-2010-12478
2010-08-16 00:00:00
Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
2010-07-27 00:00:00
Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
2010-07-27 00:00:00
nessus
nessus
FreeBSD : apache -- Remote DoS bug in mod_cache and mod_dav (28a7310f-9855-11df-8d36-001aa0166822)
2010-07-26 00:00:00
Fedora 13 : httpd-2.2.16-1.fc13 (2010-12478)
2010-08-14 00:00:00
Mandriva Linux Security Advisory : apache (MDVSA-2010:152)
2010-08-17 00:00:00
slackware
slackware
[slackware-security] httpd
2010-08-28 16:52:27
[slackware-security] httpd
2011-10-14 23:59:50
httpd
2013-03-03 15:02:33
ubuntucve
ubuntucve
httpd
httpd
Apache Httpd < 2.2.16 : mod_cache and mod_dav DoS
2010-05-04 00:00:00
Apache Httpd < 2.0.64 : mod_cache and mod_dav DoS
2010-05-04 00:00:00
Apache Httpd < 2.2.21 : mod_proxy_ajp remote DoS
2011-09-07 00:00:00
prion
prion
Cross site scripting
2013-02-26 16:55:00
Path traversal
2010-07-28 20:00:00
Directory traversal
2012-04-18 10:33:00
seebug
seebug
Apache HTTP Server balancer_handler函数跨站脚本漏洞(CVE-2012-4558)
2013-02-28 00:00:00
Apache HTTP Server mod_proxy_ajp拒绝服务漏洞
2011-09-18 00:00:00
Apache HTTP Server envvars本地权限提升漏洞
2012-09-18 00:00:00
debiancve
debiancve
freebsd
freebsd
apache -- Remote DoS bug in mod_cache and mod_dav
2010-07-21 00:00:00
Apache -- Insecure LD_LIBRARY_PATH handling
2012-03-02 00:00:00
apache22 -- several vulnerabilities
2012-10-07 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache HTTPD mod_proxy_balancer Cross Site Scripting (CVE-2012-4558)
2013-03-24 00:00:00
Apache HTTPD mod_proxy_ajp Denial Of Service (CVE-2011-3348)
2014-11-12 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: httpd-2.2.16-1.fc13
2010-08-13 21:20:54
[SECURITY] Fedora 18 Update: httpd-2.4.4-2.fc18
2013-04-01 03:30:25
[SECURITY] Fedora 15 Update: httpd-2.2.21-1.fc15
2011-09-16 01:58:28
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:47:09
Denial Of Service (DoS)
2020-04-10 01:03:06
cve
cve
debian
debian
[BSA-058] Security Update for apache2
2011-11-14 04:20:22
[SECURITY] [DSA 2298-2] apache2 regression fix
2011-09-05 19:20:44
[SECURITY] [DSA 2298-1] apache2 security update
2011-08-29 21:16:25
suse
suse
Security update for Apache 2 (important)
2011-11-04 09:08:32
Security update for Apache (important)
2011-09-06 07:08:21
Security update for Apache2 (important)
2011-11-04 09:08:25
ubuntu
ubuntu
Apache vulnerabilities
2010-11-25 00:00:00
securityvulns
securityvulns
Multiple HTTP servers DoS
2011-10-20 00:00:00
[ MDVSA-2013:015 ] apache
2013-03-02 00:00:00
[ MDVSA-2012:154 ] apache
2012-10-01 00:00:00
redhat
redhat
(RHSA-2010:0659) Moderate: httpd security and bug fix update
2010-08-30 00:00:00
(RHSA-2011:1391) Moderate: httpd security and bug fix update
2011-10-20 00:00:00
(RHSA-2013:0815) Moderate: httpd security update
2013-05-13 00:00:00
centos
centos
httpd, mod_ssl security update
2010-08-31 21:00:21
httpd, mod_ssl security update
2013-05-13 22:32:03
osv
osv
apache2 - denial of service
2011-09-05 00:00:00
apache2 - several
2013-03-04 00:00:00
amazon
amazon
threatpost
threatpost
Apache Releases Version 2.2.21 With New Fix For Range Header Flaw
2011-09-14 15:29:14
oraclelinux
oraclelinux
httpd security and bug fix update
2010-08-30 00:00:00
httpd security update
2013-05-13 00:00:00
gentoo
gentoo
Apache HTTP Server: Multiple vulnerabilities
2012-06-24 00:00:00
hackerone
hackerone
U.S. Dept Of Defense: Out-of-date Version (Apache)
2016-11-24 15:09:27
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.314 Low
EPSS
Percentile
96.5%
Related for SOL15899