Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability Network Vulnerability

Summary

Apache HTTP Server is prone to an information disclosure vulnerability. An attacker can exploit this vulnerability to gain access to sensitive information.

Solution

The vendor released an update. Please see the references for details.

References

http://httpd.apache.org/
http://seclists.org/fulldisclosure/2011/Oct/232
http://www.securityfocus.com/bid/49957

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-3368, CVE-2011-4317

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

IBM WebSphere Application Server IVT Cross Site Scripting Vulnerability
IBM WebSphere Application Server 'plugin-key.kdb' Information Disclosure Vulnerability
JBoss Enterprise Application Platform Multiple Vulnerabilities
IBM WebSphere Application Server WS-Security XML Encryption Weakness Vulnerability
Apache Tomcat 'Transfer-Encoding' Information Disclosure and Denial Of Service Vulnerabilities