The Planet Forums > Possible to upgrade apache on Plesk reloaded?

Full Version: Possible to upgrade apache on Plesk reloaded?

The Planet Forums > Control Panels > Plesk

dennysp

Apr 11 2005, 05:59 AM

Hi guys,
I'm running Plesk R. 7.5.2 on a RHEL box. I did a vulnerability scan on my box and found this:
"The remote host is running a version of Apache2 which is older than 2.0.51.

It is reported that versions prior 2.0.51 are prone to a remote denial of
service issue. An attacker may issue a specific sequence of DAV LOCK commands
to crash the process. If Apache is configured to use threads, it may
completely crash the Apache process.

In addition to this, versions prior 2.0.51 are prone to a remote buffer
overflow when parsing an URI sent over IPv6. An attacker may use this flaw
to execute arbitrary code on the remote host or to deny service to legitimate
users."

Is there a safe way to upgrade apache to at least 2.0.51 to fix this security hole?

Thanks in advance
-d

BTW, I checked the plesk forums and couldn't find anything.

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.