[Info-vax] Heads up: multiple exploitable security issues in HP SWS
Paul Sture
paul at sture.ch
Tue Apr 17 10:10:55 EDT 2012
On Tue, 17 Apr 2012 12:46:34 +0000, Simon Clubley wrote:
> Multiple critical security issues exist in HP's VMS version of Apache.
>
> PHP related:
>
> http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?
docId=emr_na-c03281867
>
> Java related:
>
> http://h20565.www2.hp.com/portal/site/hpsc/public/kb/docDisplay/?
docId=emr_na-c03281831
>
> I think the most telling thing about this is that the CVEs date back
> over the last several _years_; in Linux land you would generally get a
> new kit to fix the latest CVE within a few days.
>
> So much for this been the "Secure" Web Server.
Thanks for the alert Simon.
Does anyone know what the "Base Vector" column in those reports is
supposed to mean?
(And sigh, the text on those pages overflows the right margin when viewed
in Firefox.)
--
Paul Sture
More information about the Info-vax
mailing list