Apache HTTP Server是一款开放源代码的WEB服务程序。
Apache HTTP Server包含的Mod_cache存在设计错误,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。
如果Cache-Control头字段数据s-maxage, max-age, min-fresh, max-stale其中一个值不赋值,那么Mod_cache模块在解析的时候可导致应用程序崩溃,造成拒绝服务攻击。
RedHat Enterprise Linux Desktop Workstation v. 5 client
RedHat Enterprise Linux Desktop v.5 client
RedHat Enterprise Linux WS 4
RedHat Enterprise Linux v. 5 server
RedHat Enterprise Linux ES 4
RedHat Enterprise Linux AS 4
RedHat Desktop 4.0
Posadis Posadis 1.3.31
Posadis Posadis 1.3.28
Apache Software Foundation Apache 2.2.4
Apache Software Foundation Apache 2.2.3
Apache Software Foundation Apache 2.2 .0
Apache Software Foundation Apache 2.1.8
Apache Software Foundation Apache 2.1.7
Apache Software Foundation Apache 2.1.6
Apache Software Foundation Apache 2.1.5
Apache Software Foundation Apache 2.1.4
Apache Software Foundation Apache 2.1.3
Apache Software Foundation Apache 2.1.2
Apache Software Foundation Apache 2.1.1
Apache Software Foundation Apache 2.1
Apache Software Foundation Apache 2.0.59
Apache Software Foundation Apache 2.0.58
可参考如下安全公告获得补丁信息:
<a href=“http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=244658” target=“_blank”>http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=244658</a>