Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability Network Vulnerability

Summary

Apache HTTP Server is prone to an information disclosure vulnerability. An attacker can exploit this vulnerability to gain access to sensitive information.

Solution

The vendor released an update. Please see the references for details.

References

http://httpd.apache.org/
http://seclists.org/fulldisclosure/2011/Oct/232
http://www.securityfocus.com/bid/49957

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-3368, CVE-2011-4317

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache Tomcat 'sort' and 'orderBy' Parameters Cross Site Scripting Vulnerabilities
HTTP File Server Security Bypass and Denial of Service Vulnerabilities
Cherokee Web Server Malformed Packet Remote Denial of Service Vulnerability
IBM WebSphere Application Server (WAS) Multiple Vulnerabilities
GoAhead Webserver Multiple Stored Cross Site Scripting Vulnerabilities

Take action and discover your vulnerabilities