|
|
Apache Web Server Scoreboard Memory Segment Overwriting SIGUSR1 Sending Vulnerability
|
Bugtraq ID:
|
5884
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CAN-2002-0839
|
|
Remote:
|
No
|
|
Local:
|
Yes
|
|
Published:
|
Oct 03 2002 12:00AM
|
|
Updated:
|
Oct 03 2002 12:00AM
|
|
Credit:
|
Vulnerability discovery credited to zen-parse <zen-parse@gmx.net>.
|
|
Vulnerable:
|
Sun Cobalt RaQ XTR
Sun Cobalt RaQ 550
Sun Cobalt RaQ 4
Sun Cobalt Qube 3
Oracle Oracle9i Standard Edition 9.2 .0.2
Oracle Oracle9i Application Server Reports 9.0.2 .1
Oracle Oracle9i Application Server Reports 9.0.2
Oracle Oracle9i Application Server 9.0.2
Oracle Oracle9i Application Server 1.0.2 .2
Oracle Oracle9i Application Server 1.0.2 .1s
Oracle Oracle9i Application Server 1.0.2
Oracle Oracle9i Application Server
-
Compaq Tru64 5.1
-
Compaq Tru64 5.0 f
-
Compaq Tru64 5.0 a
-
Compaq Tru64 5.0
-
Compaq Tru64 4.0 g
-
HP HP-UX 11.11
-
HP HP-UX 11.0 4
-
HP HP-UX 11.0
-
HP HP-UX 10.34
-
HP HP-UX 10.30
-
HP HP-UX 10.26
-
HP HP-UX 10.20
-
HP HP-UX 10.16
-
HP HP-UX 10.10
-
HP HP-UX 10.9
-
HP HP-UX 10.8
-
HP HP-UX 10.1 0
-
HP HP-UX 10.0 1
-
HP HP-UX 10.0
-
HP HP-UX 9.10
-
HP HP-UX 9.9
-
HP HP-UX 9.8
-
HP HP-UX 9.7
-
HP HP-UX 9.6
-
HP HP-UX 9.5
-
HP HP-UX 9.4
-
HP HP-UX 9.3
-
HP HP-UX 9.1
-
HP HP-UX 9.0
-
HP HP-UX 8.9
-
HP HP-UX 8.8
-
HP HP-UX 8.7
-
HP HP-UX 8.6
-
HP HP-UX 8.5
-
HP HP-UX 8.4
-
HP HP-UX 8.2
-
HP HP-UX 8.1
-
HP HP-UX 8.0
-
HP HP-UX 7.8
-
HP HP-UX 7.6
-
HP HP-UX 7.4
-
HP HP-UX 7.2
-
HP HP-UX 7.0
-
IBM AIX 4.3.3
-
IBM AIX 4.3.2
-
IBM AIX 4.3.1
-
IBM AIX 4.3
-
IBM AIX 4.2.1
-
IBM AIX 4.2
-
IBM AIX 4.1.5
-
IBM AIX 4.1.4
-
IBM AIX 4.1.3
-
IBM AIX 4.1.2
-
IBM AIX 4.1.1
-
IBM AIX 4.1
-
IBM AIX 4.0
-
IBM AIX 3.2.5
-
IBM AIX 3.2.4
-
IBM AIX 3.2
-
IBM AIX 3.1
-
IBM AIX 3.0 x
-
IBM AIX 2.2.1
-
IBM AIX 1.3
-
IBM AIX 1.2.1
-
IBM AIX 5.1
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional
-
Microsoft Windows NT 4.0 SP6a
-
Microsoft Windows NT 4.0 SP5
-
Microsoft Windows NT 4.0 SP4
-
Microsoft Windows NT 4.0 SP3
-
Microsoft Windows NT 4.0 SP2
-
Microsoft Windows NT 4.0 SP1
-
Microsoft Windows NT 4.0
-
Sun Solaris 2.5.1 _x86
-
Sun Solaris 2.5.1
-
Sun Solaris 1.1.4 -JL
-
Sun Solaris 1.1.4
-
Sun Solaris 1.1.3 _U1
-
Sun Solaris 1.1.3
-
Sun Solaris 1.1.2
-
Sun Solaris 1.1.1
-
Sun Solaris 8_x86
-
Sun Solaris 8
-
Sun Solaris 7.0_x86
-
Sun Solaris 7.0
-
Sun Solaris 2.6_x86HW5/98
-
Sun Solaris 2.6_x86HW3/98
-
Sun Solaris 2.6_x86
-
Sun Solaris 2.6 HW5/98
-
Sun Solaris 2.6 HW3/98
-
Sun Solaris 2.6
-
Sun Solaris 2.5_x86
-
Sun Solaris 2.5
-
Sun Solaris 2.4_x86
-
Sun Solaris 2.4
-
Sun Solaris 2.3
-
Sun Solaris 2.2
-
Sun Solaris 2.1
-
Sun Solaris 2.0
-
Sun Solaris 1.2
-
Sun Solaris 1.1
Oracle Oracle8i Standard Edition 8.1.7 .1
Oracle Oracle8i Standard Edition 8.1.7
Oracle Oracle8i Enterprise Edition 8.1.7 .1.0
Oracle Oracle8i Enterprise Edition 8.1.7 .0.0
Oracle Oracle8 8.1.7
-
Microsoft Windows 2000 Professional
Oracle Internet Application Server 1.0.2 .1
Oracle Internet Application Server 1.0.2 .0
-
Oracle Oracle8i Enterprise Edition 8.1.7 .0.0
IBM HTTP Server 1.3.19
-
HP HP-UX 11.0
-
IBM AIX 4.3.3
-
Microsoft Windows NT 4.0 SP6a
-
Microsoft Windows NT 4.0 SP5
-
Microsoft Windows NT 4.0 SP4
-
RedHat Linux 7.1
-
S.u.S.E. Linux 7.1
-
Sun Solaris 7.0
-
Sun Solaris 2.6
HP VirtualVault 4.6
-
HP HP-UX 11.0 4
HP VirtualVault 4.5
-
HP HP-UX 11.0 4
HP OpenView Network Node Manager 6.2 Solaris
-
Sun Solaris 2.5.1
-
Sun Solaris 8
-
Sun Solaris 7.0
-
Sun Solaris 2.6
HP OpenView Network Node Manager 6.2 HP-UX 11.X
-
HP HP-UX 11.11
-
HP HP-UX 11.0
HP OpenView Network Node Manager 6.2 HP-UX 10.X
-
HP HP-UX 10.20
HP HP-UX 11.22
HP HP-UX 11.20
HP HP-UX 11.11
HP HP-UX 11.0
Apache Software Foundation Apache 1.3.26
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
Debian Linux 3.0 sparc
+
Debian Linux 3.0 s/390
+
Debian Linux 3.0 ppc
+
Debian Linux 3.0 mipsel
+
Debian Linux 3.0 mips
+
Debian Linux 3.0 m68k
+
Debian Linux 3.0 ia-64
+
Debian Linux 3.0 ia-32
+
Debian Linux 3.0 hppa
+
Debian Linux 3.0 arm
+
Debian Linux 3.0 alpha
+
MandrakeSoft Corporate Server 2.1 x86_64
+
MandrakeSoft Corporate Server 2.1
+
MandrakeSoft Linux Mandrake 9.0
+
OpenPKG OpenPKG 1.1
+
Trustix Secure Linux 1.5
+
Trustix Secure Linux 1.2
+
Trustix Secure Linux 1.1
Apache Software Foundation Apache 1.3.25
Apache Software Foundation Apache 1.3.24
+
OpenBSD OpenBSD 3.1
+
Oracle Oracle HTTP Server 9.2 .0
+
Oracle Oracle HTTP Server 9.0.1
+
Oracle Oracle9i Application Server 9.0.2
+
Oracle Oracle9i Application Server 1.0.2 .2
+
Oracle Oracle9i Application Server 1.0.2 .1s
+
Oracle Oracle9i Application Server 1.0.2
+
Slackware Linux 8.1
+
Unisphere Networks SDX-300 2.0.3
Apache Software Foundation Apache 1.3.23
-
IBM AIX 4.3
+
MandrakeSoft Linux Mandrake 8.2 ppc
+
MandrakeSoft Linux Mandrake 8.2
+
RedHat Linux 7.3 i386
+
RedHat Linux 7.3
+
S.u.S.E. Linux 8.0 i386
+
S.u.S.E. Linux 8.0
+
Trustix Secure Linux 1.5
+
Trustix Secure Linux 1.2
+
Trustix Secure Linux 1.1
Apache Software Foundation Apache 1.3.22
+
Caldera OpenLinux Server 3.1.1
+
Caldera OpenLinux Server 3.1
+
Caldera OpenLinux Workstation 3.1.1
+
Caldera OpenLinux Workstation 3.1
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
MandrakeSoft Corporate Server 1.0.1
+
MandrakeSoft Linux Mandrake 8.1 ia64
+
MandrakeSoft Linux Mandrake 8.1
+
MandrakeSoft Linux Mandrake 8.0 ppc
+
MandrakeSoft Linux Mandrake 8.0
+
MandrakeSoft Linux Mandrake 7.2
+
OpenPKG OpenPKG 1.0
+
RedHat Linux 7.2 ia64
+
RedHat Linux 7.2 i386
+
RedHat Linux 7.1 ia64
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.1 alpha
+
RedHat Linux 7.0 i386
+
RedHat Linux 7.0 alpha
+
RedHat Linux 6.2 sparc
+
RedHat Linux 6.2 i386
+
RedHat Linux 6.2 alpha
Apache Software Foundation Apache 1.3.20
-
HP HP-UX 11.22
-
HP HP-UX 11.20
+
MandrakeSoft Single Network Firewall 7.2
+
S.u.S.E. Linux 7.3 sparc
+
S.u.S.E. Linux 7.3 ppc
+
S.u.S.E. Linux 7.3 i386
+
S.u.S.E. Linux 7.3
+
SGI IRIX 6.5.18
+
SGI IRIX 6.5.17
+
SGI IRIX 6.5.16
+
SGI IRIX 6.5.15
+
SGI IRIX 6.5.14 m
+
SGI IRIX 6.5.14 f
+
SGI IRIX 6.5.14
+
SGI IRIX 6.5.13 m
+
SGI IRIX 6.5.13 f
+
SGI IRIX 6.5.13
+
SGI IRIX 6.5.12 m
+
SGI IRIX 6.5.12 f
+
SGI IRIX 6.5.12
+
Slackware Linux 8.0
+
Sun Cobalt Control Station 4100CS
+
Sun Cobalt RaQ 550
+
Sun Solaris 9_x86 Update 2
+
Sun Solaris 9_x86
+
Sun Solaris 9
+
Sun SunOS 5.9 _x86
+
Sun SunOS 5.9
Apache Software Foundation Apache 1.3.19
-
Apple Mac OS X 10.0.3
-
Caldera OpenLinux 2.4
+
Debian Linux 2.3
-
Digital (Compaq) TRU64/DIGITAL UNIX 5.0
-
Digital (Compaq) TRU64/DIGITAL UNIX 4.0 g
-
Digital (Compaq) TRU64/DIGITAL UNIX 4.0 f
+
EnGarde Secure Linux 1.0.1
-
FreeBSD FreeBSD 4.2
-
FreeBSD FreeBSD 3.5.1
-
HP HP-UX 11.11
-
HP HP-UX 11.0 4
-
HP HP-UX 11.0
-
HP HP-UX 10.20
+
HP Secure OS software for Linux 1.0
-
HP VirtualVault 4.5
+
MandrakeSoft Linux Mandrake 8.1
-
MandrakeSoft Linux Mandrake 8.0
-
MandrakeSoft Linux Mandrake 7.2
-
MandrakeSoft Linux Mandrake 7.1
-
NetBSD NetBSD 1.5.1
-
NetBSD NetBSD 1.5
+
OpenBSD OpenBSD 2.9
-
OpenBSD OpenBSD 2.8
+
OpenBSD OpenBSD 3.0
-
RedHat Linux 7.1
-
RedHat Linux 7.0
-
RedHat Linux 6.2
+
S.u.S.E. Linux 7.2 i386
+
S.u.S.E. Linux 7.2
+
S.u.S.E. Linux 7.1 x86
+
S.u.S.E. Linux 7.1 sparc
+
S.u.S.E. Linux 7.1 ppc
+
S.u.S.E. Linux 7.1 alpha
+
S.u.S.E. Linux 7.1
+
S.u.S.E. Linux 7.0 sparc
+
S.u.S.E. Linux 7.0 ppc
+
S.u.S.E. Linux 7.0 i386
+
S.u.S.E. Linux 7.0 alpha
+
S.u.S.E. Linux 7.0
+
S.u.S.E. Linux 6.4 ppc
+
S.u.S.E. Linux 6.4 i386
+
S.u.S.E. Linux 6.4 alpha
+
S.u.S.E. Linux 6.4
-
SCO eDesktop 2.4
-
SCO eServer 2.3.1
-
SGI IRIX 6.5.9
-
SGI IRIX 6.5.8
-
Sun Solaris 8
-
Sun Solaris 7.0
Apache Software Foundation Apache 1.3.18
Apache Software Foundation Apache 1.3.17
+
MandrakeSoft Corporate Server 1.0.1
+
MandrakeSoft Linux Mandrake 8.0 ppc
+
MandrakeSoft Linux Mandrake 8.0
+
OpenBSD OpenBSD 2.8
+
S.u.S.E. Linux 7.1
Apache Software Foundation Apache 1.3.14
+
EnGarde Secure Linux 1.0.1
+
MandrakeSoft Linux Mandrake 7.2
+
MandrakeSoft Linux Mandrake 7.1
-
MandrakeSoft Single Network Firewall 7.2
+
SGI IRIX 6.5.11
+
SGI IRIX 6.5.10
+
SGI IRIX 6.5.9
+
SGI IRIX 6.5.8
+
SGI IRIX 6.5.7
+
SGI IRIX 6.5.6
+
SGI IRIX 6.5.5
+
SGI IRIX 6.5.4
+
SGI IRIX 6.5.3
+
SGI IRIX 6.5.2
+
SGI IRIX 6.5.1
+
SGI IRIX 6.5
Apache Software Foundation Apache 1.3.12
+
NetScreen NetScreen-Global PRO Express Policy Manager Server
+
NetScreen NetScreen-Global PRO Policy Manager Server
+
OpenBSD OpenBSD 2.8
+
RedHat Linux 7.0 i386
+
RedHat Linux 7.0 alpha
+
RedHat Linux 6.2 sparc
+
RedHat Linux 6.2 i386
+
RedHat Linux 6.2 alpha
+
S.u.S.E. Linux 7.0 sparc
+
S.u.S.E. Linux 7.0
+
Sun Cobalt ManageRaQ v2 3599BD
+
Sun Cobalt Qube3 4000WG
+
Sun Cobalt RaQ XTR 3500R
+
Sun Cobalt RaQ4 3001R
Apache Software Foundation Apache 1.3.11
Apache Software Foundation Apache 1.3.9
+
Debian Linux 2.2 sparc
+
Debian Linux 2.2 powerpc
+
Debian Linux 2.2 arm
+
Debian Linux 2.2 alpha
+
Debian Linux 2.2 68k
+
Debian Linux 2.2
+
NetScreen NetScreen-Global PRO Express Policy Manager Server
+
NetScreen NetScreen-Global PRO Policy Manager Server
+
Sun Solaris 8_x86
+
Sun Solaris 8
+
Sun SunOS 5.8 _x86
+
Sun SunOS 5.8
Apache Software Foundation Apache 1.3.6
+
Sun Cobalt ManageRaQ3 3000R-mr
+
Sun Cobalt RaQ3 3000R
+
Sun Cobalt Velociraptor
Apache Software Foundation Apache 1.3.4
+
BSDI BSD/OS 4.0
Apache Software Foundation Apache 1.3.3
+
RedHat Linux 5.2 sparc
+
RedHat Linux 5.2 i386
+
RedHat Linux 5.2 alpha
Apache Software Foundation Apache 1.3.1
Apache Software Foundation Apache 1.3
+
Apple Mac OS X 10.3.2
+
Apple Mac OS X 10.3.1
+
Apple Mac OS X 10.3
+
Apple Mac OS X 10.2.8
+
Apple Mac OS X 10.2.7
+
Apple Mac OS X 10.2.6
+
Apple Mac OS X 10.2.5
+
Apple Mac OS X 10.2.4
+
Apple Mac OS X 10.2.3
+
Apple Mac OS X 10.2.2
+
Apple Mac OS X 10.2.1
+
Apple Mac OS X 10.2
+
Apple Mac OS X 10.1.5
+
Apple Mac OS X 10.1.4
+
Apple Mac OS X 10.1.3
+
Apple Mac OS X 10.1.2
+
Apple Mac OS X 10.1.1
+
Apple Mac OS X 10.1
+
Apple Mac OS X Server 10.3.2
+
Apple Mac OS X Server 10.3.1
+
Apple Mac OS X Server 10.3
+
Apple Mac OS X Server 10.2.8
+
Apple Mac OS X Server 10.2.7
+
Apple Mac OS X Server 10.2.6
+
Apple Mac OS X Server 10.2.5
+
Apple Mac OS X Server 10.2.4
+
Apple Mac OS X Server 10.2.3
+
Apple Mac OS X Server 10.2.2
+
Apple Mac OS X Server 10.2.1
+
Apple Mac OS X Server 10.2
+
Apple Mac OS X Server 10.1.5
+
Apple Mac OS X Server 10.1.4
+
Apple Mac OS X Server 10.1.3
+
Apple Mac OS X Server 10.1.2
+
Apple Mac OS X Server 10.1.1
+
Apple Mac OS X Server 10.1
-
Microsoft Windows 2000 Professional
-
Microsoft Windows NT 4.0
|
|
|
|
Not Vulnerable:
|
HP OpenView Network Node Manager 5.0.2 Windows NT 3.51/4.0
HP OpenView Network Node Manager 5.0 1 Solaris
-
Sun Solaris 8
-
Sun Solaris 7.0
-
Sun Solaris 2.6
-
Sun Solaris 2.5
-
Sun Solaris 2.4
HP OpenView Network Node Manager 5.0 1 HP-UX
-
HP HP-UX 10.34
-
HP HP-UX 10.30
-
HP HP-UX 10.20
-
HP HP-UX 10.16
-
HP HP-UX 10.10
-
HP HP-UX 10.9
-
HP HP-UX 10.8
-
HP HP-UX 10.1 0
-
HP HP-UX 10.0 1
-
HP HP-UX 10.0
-
HP HP-UX (VVOS) 10.24
HP OpenView Network Node Manager 5.0 1
-
HP HP-UX 11.0
-
HP HP-UX 10.20
-
Sun Solaris 8
-
Sun Solaris 7.0
-
Sun Solaris 2.6
Apache Software Foundation Apache 1.3.27
+
HP HP-UX (VVOS) 11.0 4
+
HP VirtualVault 4.6
+
HP VirtualVault 4.5
+
HP Webproxy 2.0
+
Immunix Immunix OS 7+
+
MandrakeSoft Linux Mandrake 9.1 ppc
+
MandrakeSoft Linux Mandrake 9.1
+
OpenBSD OpenBSD 3.3
+
OpenPKG OpenPKG Current
+
RedHat Enterprise Linux AS 2.1 IA64
+
RedHat Enterprise Linux AS 2.1
+
RedHat Enterprise Linux ES 2.1 IA64
+
RedHat Enterprise Linux ES 2.1
+
RedHat Enterprise Linux WS 2.1 IA64
+
RedHat Enterprise Linux WS 2.1
+
RedHat Linux Advanced Work Station 2.1
+
SGI IRIX 6.5.19
|
|
|
