Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:APACHE:HTTPD-MODLOG-COOKIE

Severity

 Major

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Apache HTTPD mod_log_config Cookie Handling Denial of Service

Release Date

 2013/01/08

Update Number

 2223

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Apache HTTPD mod_log_config Cookie Handling Denial of Service


This signature detects attempts to exploit a known vulnerability against Apache httpd. A successful attack can result in a denial-of-service condition.

Extended Description

Apache HTTP Server is prone to a denial-of-service vulnerability. Successful exploits will result in a denial-of-service condition. The vulnerability affects Apache HTTP Server versions 2.2.17, 2.2.18, 2.219, 2.2.20, and 2.2.21.

Affected Products

  • Apache_software_foundation apache 2.2.17
  • Apache_software_foundation apache 2.2.18
  • Apache_software_foundation apache 2.2.19
  • Apache_software_foundation apache 2.2.20
  • Apache_software_foundation apache 2.2.21
  • Gentoo linux
  • Hp hp-ux B.11.11
  • Hp hp-ux B.11.23
  • Hp hp-ux B.11.31
  • Hp openview_network_node_manager 7.53 - Hp-Ux
  • Hp openview_network_node_manager 7.53 - Linux
  • Hp openview_network_node_manager 7.53 - Solaris
  • Hp system_management_homepage 6.0
  • Hp system_management_homepage 6.1
  • Hp system_management_homepage 6.2
  • Hp system_management_homepage 6.3
  • Hp system_management_homepage 7.0
  • Hp system_management_homepage 7.1
  • Mandriva enterprise_server 5
  • Mandriva enterprise_server 5 X86 64
  • Mandriva linux_mandrake 2010.1
  • Mandriva linux_mandrake 2010.1 X86 64
  • Mandriva linux_mandrake 2011
  • Mandriva linux_mandrake 2011 x86_64
  • Red_hat fedora 15
  • Red_hat fedora 16
  • Red_hat jboss_enterprise_web_server_for_rhel_5_server 1.0.0
  • Red_hat jboss_enterprise_web_server_for_rhel_6 1.0.0
  • Slackware linux 12.0
  • Slackware linux 12.1
  • Slackware linux 12.2
  • Slackware linux 13.0
  • Slackware linux 13.0 X86 64
  • Slackware linux 13.1
  • Slackware linux 13.1 X86 64
  • Slackware linux 13.37
  • Slackware linux 13.37 x86_64
  • Slackware linux -Current
  • Slackware linux X86 64 -Current
  • Ubuntu ubuntu_linux 10.04 Amd64
  • Ubuntu ubuntu_linux 10.04 ARM
  • Ubuntu ubuntu_linux 10.04 I386
  • Ubuntu ubuntu_linux 10.04 Powerpc
  • Ubuntu ubuntu_linux 10.04 Sparc
  • Ubuntu ubuntu_linux 10.10 amd64
  • Ubuntu ubuntu_linux 10.10 ARM
  • Ubuntu ubuntu_linux 10.10 i386
  • Ubuntu ubuntu_linux 10.10 powerpc
  • Ubuntu ubuntu_linux 11.04 amd64
  • Ubuntu ubuntu_linux 11.04 ARM
  • Ubuntu ubuntu_linux 11.04 i386
  • Ubuntu ubuntu_linux 11.04 powerpc
  • Ubuntu ubuntu_linux 11.10 amd64
  • Ubuntu ubuntu_linux 11.10 i386
  • Ubuntu ubuntu_linux 8.04 LTS Amd64
  • Ubuntu ubuntu_linux 8.04 LTS I386
  • Ubuntu ubuntu_linux 8.04 LTS Lpia
  • Ubuntu ubuntu_linux 8.04 LTS Powerpc
  • Ubuntu ubuntu_linux 8.04 LTS Sparc

References

  • BugTraq: 51705
  • CVE: CVE-2012-0021
  • URL: http://httpd.apache.org/security/vulnerabilities_22.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out