Apache Web Server FTP代理IPV6远程拒绝服务漏洞发布时间:2003-07-08 更新时间:2003-07-11 严重程度:中 威胁程度:远程拒绝服务 错误类型:意外情况处置错误 利用方式:服务器模式 BUGTRAQ ID:8135 CVE(CAN) ID:CAN-2003-0254 受影响系统 Apache Software Foundation Apache 2.0详细描述 Apache服务器包含的FTP代理在处理IPV6时存在问题,攻击者提交一个IPV6格式地址,可导致FTP代理服务崩溃。造成不能为其他用户提供服务。 测试代码 尚无 解决方案 补丁下载: Apache Software Foundation Apache 2.0: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.28: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.32: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.35: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.36: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.37: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.38: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.39: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.40: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.41: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.42: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.43: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.44: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.45: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Apache Software Foundation Apache 2.0.46: Apache Software Foundation Upgrade Apache httpd 2.0.47 http://httpd.apache.org/download.cgi Trustix Patch apache-2.0.47-2tr.i586.rpm ftp://ftp.trustix.net/pub/Trustix/updates/2.0/RPMS/apache-2.0.47-2tr.i586.rpm Trustix Patch apache-devel-2.0.47-2tr.i586.rpm ftp://ftp.trustix.net/pub/Trustix/updates/2.0/RPMS/apache-devel-2.0.47-2tr.i586.rpm Trustix Patch apache-manual-2.0.47-2tr.i586.rpm ftp://ftp.trustix.net/pub/Trustix/updates/2.0/RPMS/apache-manual-2.0.47-2tr.i586.rpm 相关信息 Yoshioka Tsuneo <tsuneo.yoshioka@f-secure.com>. 参考:http://www.apache.org/dist/httpd/CHANGES_2.0 |
