Is RHEL vulnerable to Apache httpd CVE-2010-0425?

Solution Verified - Updated -

Issue

  • Is RHEL vulnerable to CVE-2010-0425?

  • modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.3.x before 2.3.7 on Windows does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which has unspecified impact and remote attack vectors related to "orphaned callback pointers."

Environment

  • Red Hat Enterprise Linux (RHEL)
    - 4.x
    - 5.x
    - 6.x
    - 7.x
  • Apache httpd (httpd)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In