Oracle Supply Chain up to 6.2 Oracle Transportation Management 拒绝服务漏洞

admin

0
文章

0
评论

2023-12-08 19:31:47 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

低危 Oracle Supply Chain up to 6.2 Oracle Transportation Management 拒绝服务漏洞

CVE编号

CVE-2011-3192

利用情况

POC 已公开

补丁情况

官方补丁

披露时间

2011-08-30

漏洞描述

Fujitsu Interstage HTTP服务器存在安全漏洞，攻击者可以利用漏洞进行拒绝服务攻击。

解决建议

用户可参考如下供应商提供的安全公告获得补丁信息：http://www.fujitsu.com/global/support/software/security/products-f/interstage-201102e.html

参考链接
http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0285.html
http://blogs.oracle.com/security/entry/security_alert_for_cve_2011
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00011.html
http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html
http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00011.html
http://mail-archives.apache.org/mod_mbox/httpd-announce/201108.mbox/%3c201108...
http://mail-archives.apache.org/mod_mbox/httpd-dev/201108.mbox/%3cCAAPSnn2PO-...
http://marc.info/?l=bugtraq&m=131551295528105&w=2
http://marc.info/?l=bugtraq&m=131731002122529&w=2
http://marc.info/?l=bugtraq&m=132033751509019&w=2
http://marc.info/?l=bugtraq&m=133477473521382&w=2
http://marc.info/?l=bugtraq&m=133951357207000&w=2
http://marc.info/?l=bugtraq&m=134987041210674&w=2
http://osvdb.org/74721
http://seclists.org/fulldisclosure/2011/Aug/175
http://secunia.com/advisories/45606
http://secunia.com/advisories/45937
http://secunia.com/advisories/46000
http://secunia.com/advisories/46125
http://secunia.com/advisories/46126
http://securitytracker.com/id?1025960
http://support.apple.com/kb/HT5002
http://www.apache.org/dist/httpd/Announcement2.2.html
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b90d73.shtml
http://www.exploit-db.com/exploits/17696
http://www.gossamer-threads.com/lists/apache/dev/401638
http://www.kb.cert.org/vuls/id/405811
http://www.mandriva.com/security/advisories?name=MDVSA-2011:130
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/alert-cve-2011-3192-485304.html
http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
http://www.redhat.com/support/errata/RHSA-2011-1245.html
http://www.redhat.com/support/errata/RHSA-2011-1294.html
http://www.redhat.com/support/errata/RHSA-2011-1300.html
http://www.redhat.com/support/errata/RHSA-2011-1329.html
http://www.redhat.com/support/errata/RHSA-2011-1330.html
http://www.redhat.com/support/errata/RHSA-2011-1369.html
http://www.securityfocus.com/bid/49303
http://www.ubuntu.com/usn/USN-1199-1
https://bugzilla.redhat.com/show_bug.cgi?id=732928
https://exchange.xforce.ibmcloud.com/vulnerabilities/69396
https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+Stru...
https://issues.apache.org/bugzilla/show_bug.cgi?id=51714
https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e0...
https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc1...
https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5...
https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360...
https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9...
https://lists.apache.org/thread.html/r1d201e3da31a2c8aa870c8314623caef7debd74...
https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8...
https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86...
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb7...
https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27...
https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b...
https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525...
https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6...
https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694...
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f...
https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5e...
https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5...
https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd...
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f...
https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806ce...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	apache	http_server	1.3	-
	运行在以下环境
	应用	apache	http_server	1.3.0	-
	运行在以下环境
	应用	apache	http_server	1.3.1	-
	运行在以下环境
	应用	apache	http_server	1.3.1.1	-
	运行在以下环境
	应用	apache	http_server	1.3.10	-
	运行在以下环境
	应用	apache	http_server	1.3.11	-
	运行在以下环境
	应用	apache	http_server	1.3.12	-
	运行在以下环境
	应用	apache	http_server	1.3.13	-
	运行在以下环境
	应用	apache	http_server	1.3.14	-
	运行在以下环境
	应用	apache	http_server	1.3.15	-
	运行在以下环境
	应用	apache	http_server	1.3.16	-
	运行在以下环境
	应用	apache	http_server	1.3.17	-
	运行在以下环境
	应用	apache	http_server	1.3.18	-
	运行在以下环境
	应用	apache	http_server	1.3.19	-
	运行在以下环境
	应用	apache	http_server	1.3.2	-
	运行在以下环境
	应用	apache	http_server	1.3.20	-
	运行在以下环境
	应用	apache	http_server	1.3.22	-
	运行在以下环境
	应用	apache	http_server	1.3.23	-
	运行在以下环境
	应用	apache	http_server	1.3.24	-
	运行在以下环境
	应用	apache	http_server	1.3.25	-
	运行在以下环境
	应用	apache	http_server	1.3.26	-
	运行在以下环境
	应用	apache	http_server	1.3.27	-
	运行在以下环境
	应用	apache	http_server	1.3.28	-
	运行在以下环境
	应用	apache	http_server	1.3.29	-
	运行在以下环境
	应用	apache	http_server	1.3.3	-
	运行在以下环境
	应用	apache	http_server	1.3.30	-
	运行在以下环境
	应用	apache	http_server	1.3.31	-
	运行在以下环境
	应用	apache	http_server	1.3.32	-
	运行在以下环境
	应用	apache	http_server	1.3.33	-
	运行在以下环境
	应用	apache	http_server	1.3.34	-
	运行在以下环境
	应用	apache	http_server	1.3.35	-
	运行在以下环境
应用	apache	http_server	1.3.36	-
运行在以下环境
应用	apache	http_server	1.3.37	-
运行在以下环境
应用	apache	http_server	1.3.38	-
运行在以下环境
应用	apache	http_server	1.3.39	-
运行在以下环境
应用	apache	http_server	1.3.4	-
运行在以下环境
应用	apache	http_server	1.3.41	-
运行在以下环境
应用	apache	http_server	1.3.42	-
运行在以下环境
应用	apache	http_server	1.3.5	-
运行在以下环境
应用	apache	http_server	1.3.6	-
运行在以下环境
应用	apache	http_server	1.3.65	-
运行在以下环境
应用	apache	http_server	1.3.68	-
运行在以下环境
应用	apache	http_server	1.3.7	-
运行在以下环境
应用	apache	http_server	1.3.8	-
运行在以下环境
应用	apache	http_server	1.3.9	-
运行在以下环境
应用	apache	http_server	2.0	-
运行在以下环境
应用	apache	http_server	2.0.28	-
运行在以下环境
应用	apache	http_server	2.0.32	-
运行在以下环境
应用	apache	http_server	2.0.34	-
运行在以下环境
应用	apache	http_server	2.0.35	-
运行在以下环境
应用	apache	http_server	2.0.36	-
运行在以下环境
应用	apache	http_server	2.0.37	-
运行在以下环境
应用	apache	http_server	2.0.38	-
运行在以下环境
应用	apache	http_server	2.0.39	-
运行在以下环境
应用	apache	http_server	2.0.40	-
运行在以下环境
应用	apache	http_server	2.0.41	-
运行在以下环境
应用	apache	http_server	2.0.42	-
运行在以下环境
应用	apache	http_server	2.0.43	-
运行在以下环境
应用	apache	http_server	2.0.44	-
运行在以下环境
应用	apache	http_server	2.0.45	-
运行在以下环境
应用	apache	http_server	2.0.46	-
运行在以下环境
应用	apache	http_server	2.0.47	-
运行在以下环境
应用	apache	http_server	2.0.48	-
运行在以下环境
应用	apache	http_server	2.0.49	-
运行在以下环境
应用	apache	http_server	2.0.50	-
运行在以下环境
应用	apache	http_server	2.0.51	-
运行在以下环境
应用	apache	http_server	2.0.52	-
运行在以下环境
应用	apache	http_server	2.0.53	-
运行在以下环境
应用	apache	http_server	2.0.54	-
运行在以下环境
应用	apache	http_server	2.0.55	-
运行在以下环境
应用	apache	http_server	2.0.56	-
运行在以下环境
应用	apache	http_server	2.0.57	-
运行在以下环境
应用	apache	http_server	2.0.58	-
运行在以下环境
应用	apache	http_server	2.0.59	-
运行在以下环境
应用	apache	http_server	2.0.60	-
运行在以下环境
应用	apache	http_server	2.0.61	-
运行在以下环境
应用	apache	http_server	2.0.63	-
运行在以下环境
应用	apache	http_server	2.0.64	-
运行在以下环境
应用	apache	http_server	2.0.9	-
运行在以下环境
应用	apache	http_server	2.2.0	-
运行在以下环境
应用	apache	http_server	2.2.1	-
运行在以下环境
应用	apache	http_server	2.2.10	-
运行在以下环境
应用	apache	http_server	2.2.11	-
运行在以下环境
应用	apache	http_server	2.2.12	-
运行在以下环境
应用	apache	http_server	2.2.13	-
运行在以下环境
应用	apache	http_server	2.2.14	-
运行在以下环境
应用	apache	http_server	2.2.15	-
运行在以下环境
应用	apache	http_server	2.2.16	-
运行在以下环境
应用	apache	http_server	2.2.18	-
运行在以下环境
应用	apache	http_server	2.2.19	-
运行在以下环境
应用	apache	http_server	2.2.2	-
运行在以下环境
应用	apache	http_server	2.2.3	-
运行在以下环境
应用	apache	http_server	2.2.4	-
运行在以下环境
应用	apache	http_server	2.2.6	-
运行在以下环境
应用	apache	http_server	2.2.8	-
运行在以下环境
应用	apache	http_server	2.2.9	-
运行在以下环境
系统	amazon_AMI	httpd	*		Up to (excluding) 2.2.21-1.18.amzn1
运行在以下环境
系统	debian_10	apache2	*		Up to (excluding) 2.2.19-2
运行在以下环境
系统	debian_11	apache2	*		Up to (excluding) 2.2.19-2
运行在以下环境
系统	debian_12	apache2	*		Up to (excluding) 2.2.19-2
运行在以下环境
系统	debian_5.0	apache2	*		Up to (excluding) 2.2.9-10+lenny10
运行在以下环境
系统	debian_6	apache2	*		Up to (excluding) 2.2.16-6+squeeze2
运行在以下环境
系统	debian_sid	apache2	*		Up to (excluding) 2.2.19-2
运行在以下环境
系统	opensuse_11.3	apache2-doc	*		Up to (excluding) 2.2.15-4.5.1
运行在以下环境
系统	opensuse_11.4	apache2-doc	*		Up to (excluding) 2.2.17-4.7.1
运行在以下环境
系统	oracle_5	httpd-devel	*		Up to (excluding) 2.2.3-53.0.1.el5_7.1
运行在以下环境
系统	oracle_6	oraclelinux-release	*		Up to (excluding) 2.2.15-9.0.1.el6_1.2
运行在以下环境
系统	redhat_5	httpd	*		Up to (excluding) 0:2.2.3-45.el5_6.2
运行在以下环境
系统	redhat_6	httpd	*		Up to (excluding) 0:2.0.52-48.ent
运行在以下环境
系统	suse_12	apache2	*		Up to (excluding) 2.4.10-6