|
|
Apache Web Server Type-Map Recursive Loop Denial Of Service Vulnerability
|
Bugtraq ID:
|
8138
|
|
Class:
|
Design Error
|
|
CVE:
|
|
|
Remote:
|
No
|
|
Local:
|
Yes
|
|
Published:
|
Jul 08 2003 12:00AM
|
|
Updated:
|
Jul 08 2003 12:00AM
|
|
Credit:
|
Discovery of this vulnerability has been credited to Keigo Yamazaki.
|
|
Vulnerable:
|
Apache Software Foundation Apache 2.0.46
+
RedHat Desktop 3.0
+
RedHat Enterprise Linux AS 3
+
RedHat Enterprise Linux ES 3
+
RedHat Enterprise Linux WS 3
+
Trustix Secure Linux 2.0
Apache Software Foundation Apache 2.0.45
-
Apple Mac OS X 10.2.6
-
Apple Mac OS X 10.2.5
-
Apple Mac OS X 10.2.4
-
Apple Mac OS X 10.2.3
-
Apple Mac OS X 10.2.2
-
Apple Mac OS X 10.2.1
-
Apple Mac OS X 10.2
-
Apple Mac OS X 10.1.5
-
Apple Mac OS X 10.1.4
-
Apple Mac OS X 10.1.3
-
Apple Mac OS X 10.1.2
-
Apple Mac OS X 10.1.1
-
Apple Mac OS X 10.1
-
Apple Mac OS X 10.1
-
Apple Mac OS X 10.0.4
-
Apple Mac OS X 10.0.3
-
Apple Mac OS X 10.0.2
-
Apple Mac OS X 10.0.1
-
Apple Mac OS X 10.0
+
Conectiva Linux 9.0
Apache Software Foundation Apache 2.0.44
Apache Software Foundation Apache 2.0.43
Apache Software Foundation Apache 1.3.27
+
HP HP-UX (VVOS) 11.0 4
+
HP VirtualVault 4.6
+
HP VirtualVault 4.5
+
HP Webproxy 2.0
+
Immunix Immunix OS 7+
+
MandrakeSoft Linux Mandrake 9.1 ppc
+
MandrakeSoft Linux Mandrake 9.1
+
OpenBSD OpenBSD 3.3
+
OpenPKG OpenPKG Current
+
RedHat Enterprise Linux AS 2.1 IA64
+
RedHat Enterprise Linux AS 2.1
+
RedHat Enterprise Linux ES 2.1 IA64
+
RedHat Enterprise Linux ES 2.1
+
RedHat Enterprise Linux WS 2.1 IA64
+
RedHat Enterprise Linux WS 2.1
+
RedHat Linux Advanced Work Station 2.1
+
SGI IRIX 6.5.19
Apache Software Foundation Apache 1.3.26
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
Debian Linux 3.0 sparc
+
Debian Linux 3.0 s/390
+
Debian Linux 3.0 ppc
+
Debian Linux 3.0 mipsel
+
Debian Linux 3.0 mips
+
Debian Linux 3.0 m68k
+
Debian Linux 3.0 ia-64
+
Debian Linux 3.0 ia-32
+
Debian Linux 3.0 hppa
+
Debian Linux 3.0 arm
+
Debian Linux 3.0 alpha
+
MandrakeSoft Corporate Server 2.1 x86_64
+
MandrakeSoft Corporate Server 2.1
+
MandrakeSoft Linux Mandrake 9.0
+
OpenPKG OpenPKG 1.1
+
Trustix Secure Linux 1.5
+
Trustix Secure Linux 1.2
+
Trustix Secure Linux 1.1
Apache Software Foundation Apache 1.3.25
Apache Software Foundation Apache 1.3.24
+
OpenBSD OpenBSD 3.1
+
Oracle Oracle HTTP Server 9.2 .0
+
Oracle Oracle HTTP Server 9.0.1
+
Oracle Oracle9i Application Server 9.0.2
+
Oracle Oracle9i Application Server 1.0.2 .2
+
Oracle Oracle9i Application Server 1.0.2 .1s
+
Oracle Oracle9i Application Server 1.0.2
+
Slackware Linux 8.1
+
Unisphere Networks SDX-300 2.0.3
Apache Software Foundation Apache 1.3.23
-
IBM AIX 4.3
+
MandrakeSoft Linux Mandrake 8.2 ppc
+
MandrakeSoft Linux Mandrake 8.2
+
RedHat Linux 7.3 i386
+
RedHat Linux 7.3
+
S.u.S.E. Linux 8.0 i386
+
S.u.S.E. Linux 8.0
+
Trustix Secure Linux 1.5
+
Trustix Secure Linux 1.2
+
Trustix Secure Linux 1.1
Apache Software Foundation Apache 1.3.22
+
Caldera OpenLinux Server 3.1.1
+
Caldera OpenLinux Server 3.1
+
Caldera OpenLinux Workstation 3.1.1
+
Caldera OpenLinux Workstation 3.1
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
MandrakeSoft Corporate Server 1.0.1
+
MandrakeSoft Linux Mandrake 8.1 ia64
+
MandrakeSoft Linux Mandrake 8.1
+
MandrakeSoft Linux Mandrake 8.0 ppc
+
MandrakeSoft Linux Mandrake 8.0
+
MandrakeSoft Linux Mandrake 7.2
+
OpenPKG OpenPKG 1.0
+
RedHat Linux 7.2 ia64
+
RedHat Linux 7.2 i386
+
RedHat Linux 7.1 ia64
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.1 alpha
+
RedHat Linux 7.0 i386
+
RedHat Linux 7.0 alpha
+
RedHat Linux 6.2 sparc
+
RedHat Linux 6.2 i386
+
RedHat Linux 6.2 alpha
Apache Software Foundation Apache 1.3.20
-
HP HP-UX 11.22
-
HP HP-UX 11.20
+
MandrakeSoft Single Network Firewall 7.2
+
S.u.S.E. Linux 7.3 sparc
+
S.u.S.E. Linux 7.3 ppc
+
S.u.S.E. Linux 7.3 i386
+
S.u.S.E. Linux 7.3
+
SGI IRIX 6.5.18
+
SGI IRIX 6.5.17
+
SGI IRIX 6.5.16
+
SGI IRIX 6.5.15
+
SGI IRIX 6.5.14 m
+
SGI IRIX 6.5.14 f
+
SGI IRIX 6.5.14
+
SGI IRIX 6.5.13 m
+
SGI IRIX 6.5.13 f
+
SGI IRIX 6.5.13
+
SGI IRIX 6.5.12 m
+
SGI IRIX 6.5.12 f
+
SGI IRIX 6.5.12
+
Slackware Linux 8.0
+
Sun Cobalt Control Station 4100CS
+
Sun Cobalt RaQ 550
+
Sun Solaris 9_x86 Update 2
+
Sun Solaris 9_x86
+
Sun Solaris 9
+
Sun SunOS 5.9 _x86
+
Sun SunOS 5.9
|
|
|
|
Not Vulnerable:
|
Apache Software Foundation Apache 2.0.47
+
Apple Mac OS X Server 10.3.5
+
Apple Mac OS X Server 10.3.4
+
Apple Mac OS X Server 10.3.3
+
Apple Mac OS X Server 10.3.2
+
Apple Mac OS X Server 10.3.1
+
Apple Mac OS X Server 10.3
+
Apple Mac OS X Server 10.2.8
+
Apple Mac OS X Server 10.2.7
+
Apple Mac OS X Server 10.2.6
+
Apple Mac OS X Server 10.2.5
+
Apple Mac OS X Server 10.2.4
+
Apple Mac OS X Server 10.2.3
+
Apple Mac OS X Server 10.2.2
+
Apple Mac OS X Server 10.2.1
+
Apple Mac OS X Server 10.2
+
Apple Mac OS X Server 10.1.5
+
Apple Mac OS X Server 10.1.4
+
Apple Mac OS X Server 10.1.3
+
Apple Mac OS X Server 10.1.2
+
Apple Mac OS X Server 10.1.1
+
Apple Mac OS X Server 10.1
+
MandrakeSoft Linux Mandrake 9.2 amd64
+
MandrakeSoft Linux Mandrake 9.2
+
MandrakeSoft Linux Mandrake 9.1 ppc
+
MandrakeSoft Linux Mandrake 9.1
Apache Software Foundation Apache 1.3.28
+
Conectiva Linux 8.0
+
MandrakeSoft Linux Mandrake 9.2 amd64
+
MandrakeSoft Linux Mandrake 9.2
+
OpenBSD OpenBSD 3.4
+
OpenPKG OpenPKG 1.3
|
|
|
