Apache mod_perl Apache::Status Cross Site Scripting Vulnerability, CVE- 2009-0796 [duplicate]PCI Compliance: install Apache 2.4.17 on Ubuntu 14.04.3?Tracking Security Vulnerability remediationFix CVE-2009-0796 Ubuntu HardyWhy would a PCI scan fail because of components that are not even installed?Remotely Detect Windows Server Service Pack LevelUbuntu PCI-DSS Compliance IssueCisco CVE-2014-0224 VulnerabilityHow to fix 'logjam' vulnerability in Apache (httpd)XSS Vulnerability with PCI RapidComplyHow do I solve cve-2015-3183 without updating ApacheTurn off TLS1.0 on Apache for PCI compliance

How dangerous is XSS

What does the same-ish mean?

How to find if SQL server backup is encrypted with TDE without restoring the backup

Why are UK visa biometrics appointments suspended at USCIS Application Support Centers?

Theorists sure want true answers to this!

How to travel to Japan while expressing milk?

Bullying boss launched a smear campaign and made me unemployable

Why is it a bad idea to hire a hitman to eliminate most corrupt politicians?

Getting extremely large arrows with tikzcd

Do creatures with a listed speed of "0 ft., fly 30 ft. (hover)" ever touch the ground?

Using "tail" to follow a file without displaying the most recent lines

Is it possible to create a QR code using text?

Can a virus destroy the BIOS of a modern computer?

Avoiding the "not like other girls" trope?

Can someone clarify Hamming's notion of important problems in relation to modern academia?

If a warlock makes a Dancing Sword their pact weapon, is there a way to prevent it from disappearing if it's farther away for more than a minute?

How could indestructible materials be used in power generation?

GFCI outlets - can they be repaired? Are they really needed at the end of a circuit?

How can I deal with my CEO asking me to hire someone with a higher salary than me, a co-founder?

Rotate ASCII Art by 45 Degrees

What exactly is ineptocracy?

Does int main() need a declaration on C++?

Do Iron Man suits sport waste management systems?

Where would I need my direct neural interface to be implanted?



Apache mod_perl Apache::Status Cross Site Scripting Vulnerability, CVE- 2009-0796 [duplicate]


PCI Compliance: install Apache 2.4.17 on Ubuntu 14.04.3?Tracking Security Vulnerability remediationFix CVE-2009-0796 Ubuntu HardyWhy would a PCI scan fail because of components that are not even installed?Remotely Detect Windows Server Service Pack LevelUbuntu PCI-DSS Compliance IssueCisco CVE-2014-0224 VulnerabilityHow to fix 'logjam' vulnerability in Apache (httpd)XSS Vulnerability with PCI RapidComplyHow do I solve cve-2015-3183 without updating ApacheTurn off TLS1.0 on Apache for PCI compliance













-1
















This question already has an answer here:



  • PCI Compliance: install Apache 2.4.17 on Ubuntu 14.04.3?

    2 answers



During a scan on our server (PCI-DSS), we found Apache mod_perl Apache::Status Cross Site Scripting Vulnerability, CVE- 2009-0796.



I did a lot of search on google and came up with no clear solution. Help in this regard will be much appreciated.



Server is on Apache 2.4.38 on Ubuntu.
Thank you!






apache-2.4 pci-dss vulnerabilities mod-perl vulnerability







share|improve this question













marked as duplicate by HBruijn, Sven yesterday


This question has been asked before and already has an answer. If those answers do not fully address your question, please ask a new question.






















    -1
















    This question already has an answer here:



    • PCI Compliance: install Apache 2.4.17 on Ubuntu 14.04.3?

      2 answers



    During a scan on our server (PCI-DSS), we found Apache mod_perl Apache::Status Cross Site Scripting Vulnerability, CVE- 2009-0796.



    I did a lot of search on google and came up with no clear solution. Help in this regard will be much appreciated.



    Server is on Apache 2.4.38 on Ubuntu.
    Thank you!






    apache-2.4 pci-dss vulnerabilities mod-perl vulnerability







    share|improve this question













    marked as duplicate by HBruijn, Sven yesterday


    This question has been asked before and already has an answer. If those answers do not fully address your question, please ask a new question.




















      -1












      -1








      -1









      This question already has an answer here:



      • PCI Compliance: install Apache 2.4.17 on Ubuntu 14.04.3?

        2 answers



      During a scan on our server (PCI-DSS), we found Apache mod_perl Apache::Status Cross Site Scripting Vulnerability, CVE- 2009-0796.



      I did a lot of search on google and came up with no clear solution. Help in this regard will be much appreciated.



      Server is on Apache 2.4.38 on Ubuntu.
      Thank you!






      apache-2.4 pci-dss vulnerabilities mod-perl vulnerability







      share|improve this question















      This question already has an answer here:



      • PCI Compliance: install Apache 2.4.17 on Ubuntu 14.04.3?

        2 answers



      During a scan on our server (PCI-DSS), we found Apache mod_perl Apache::Status Cross Site Scripting Vulnerability, CVE- 2009-0796.



      I did a lot of search on google and came up with no clear solution. Help in this regard will be much appreciated.



      Server is on Apache 2.4.38 on Ubuntu.
      Thank you!





      This question already has an answer here:



      • PCI Compliance: install Apache 2.4.17 on Ubuntu 14.04.3?

        2 answers






      apache-2.4 pci-dss vulnerabilities mod-perl vulnerability




      apache-2.4 pci-dss vulnerabilities mod-perl vulnerability






      share|improve this question













      share|improve this question











      share|improve this question




      share|improve this question










      asked yesterday









      Aman SrivastavaAman Srivastava

      11




      11




      marked as duplicate by HBruijn, Sven yesterday


      This question has been asked before and already has an answer. If those answers do not fully address your question, please ask a new question.









      marked as duplicate by HBruijn, Sven yesterday


      This question has been asked before and already has an answer. If those answers do not fully address your question, please ask a new question.






















          1 Answer
          1






          active

          oldest

          votes


















          0














          When you have Apache's mod_perl enabled, are actually using it and have the online status enabled (in the start-up script, from your main httpd.conf, one of the included configuration snippets or via a .htaccess file) you need to secure access to the /perl-status URL path to prevent public access. https://perl.apache.org/docs/2.0/api/Apache2/Status.html






          share|improve this answer





























            1 Answer
            1






            active

            oldest

            votes








            1 Answer
            1






            active

            oldest

            votes









            active

            oldest

            votes






            active

            oldest

            votes









            0














            When you have Apache's mod_perl enabled, are actually using it and have the online status enabled (in the start-up script, from your main httpd.conf, one of the included configuration snippets or via a .htaccess file) you need to secure access to the /perl-status URL path to prevent public access. https://perl.apache.org/docs/2.0/api/Apache2/Status.html






            share|improve this answer



























              0














              When you have Apache's mod_perl enabled, are actually using it and have the online status enabled (in the start-up script, from your main httpd.conf, one of the included configuration snippets or via a .htaccess file) you need to secure access to the /perl-status URL path to prevent public access. https://perl.apache.org/docs/2.0/api/Apache2/Status.html






              share|improve this answer

























                0












                0








                0







                When you have Apache's mod_perl enabled, are actually using it and have the online status enabled (in the start-up script, from your main httpd.conf, one of the included configuration snippets or via a .htaccess file) you need to secure access to the /perl-status URL path to prevent public access. https://perl.apache.org/docs/2.0/api/Apache2/Status.html






                share|improve this answer













                When you have Apache's mod_perl enabled, are actually using it and have the online status enabled (in the start-up script, from your main httpd.conf, one of the included configuration snippets or via a .htaccess file) you need to secure access to the /perl-status URL path to prevent public access. https://perl.apache.org/docs/2.0/api/Apache2/Status.html







                share|improve this answer












                share|improve this answer



                share|improve this answer










                answered yesterday









                HBruijnHBruijn

                55.9k1190150




                55.9k1190150













                    -

                    Popular posts from this blog

                    How to write a 12-bar blues melodyI-IV-V blues progressionHow to play the bridges in a standard blues progressionHow does Gdim7 fit in C# minor?question on a certain chord progressionMusicology of Melody12 bar blues, spread rhythm: alternative to 6th chord to avoid finger stretchChord progressions/ Root key/ MelodiesHow to put chords (POP-EDM) under a given lead vocal melody (starting from a good knowledge in music theory)Are there “rules” for improvising with the minor pentatonic scale over 12-bar shuffle?Confusion about blues scale and chords

                    Image
                    Why is a set not a partition of itself? Would an 8% reduction in drag outweigh the weight addition from this custom CFD-tested winglet? Labeling matrices/rectangles and drawing Sigma inside rectangle Unexpected Netflix account registered to my Gmail address - any way it could be a hack attempt? 51% attack - apparently very easy? refering to CZ's "rollback btc chain" - How to make sure such corruptible scenario can never happen so easily? Missouri raptors have wild hairdos Can someone explain homicide-related death rates? Why is tomato paste so cheap? What are the implications of the new alleged key recovery attack preprint on SIMON? Effects of ~10atm pressure on engine design Is taking modulus on both sides of an equation valid? Jumping frame contents with beamer and pgfplots Are there any established rules for splitting books into parts, chapters, sections etc? Anatomically Correct Carnivorous Tree Why do I get two different answers when solvi...
                    Read more

                    What if the end-user didn't have the required library?What is setup.py?What is a clean, pythonic way to have multiple constructors in Python?What does Ruby have that Python doesn't, and vice versa?What is the reason for having '//' in Python?How do I create a namespace package in Python?How to package shared objects that python modules depend on?setuptools vs. distutils: why is distutils still a thing?Navigation in Windows 10 vs code not going to virtualenv library when the same library is installed at user levelPython create package for local usePackaging a project that uses multiple python versionsWhy is permission denied on pip install except for when “--user” is included at end of command?

                    Image
                    Can a tourist shoot a gun in the USA? Will a coyote attack my dog on a leash while I'm on a hiking trail? Labeling matrices/rectangles and drawing Sigma inside rectangle How can I answer high-school writing prompts without sounding weird and fake? Is there ever any indication in the MCU as to how Spider-Man got his powers? Jumping frame contents with beamer and pgfplots Would an 8% reduction in drag outweigh the weight addition from this custom CFD-tested winglet? Is it possible to create different colors in rocket exhaust? German characters on US-International keyboard layout Does gravity affect the time evolution of a QM wave function? 51% attack - apparently very easy? refering to CZ's "rollback btc chain" - How to make sure such corruptible scenario can never happen so easily? Why are solar panels kept tilted? Is Germany still exporting arms to countries involved in Yemen? Unexpected Netflix account registered to my Gmail address - any wa...
                    Read more

                    Why did Thanos need his ship to help him in the battle scene?Which actor plays Thanos in the Avengers mid-credits scene?Are there economic implications portrayed in comics where the buildings and cities are ruined almost daily?Old X-Men comic where team travels to alien world with a ring-like sun that needs recharging?Why does Ego need help sleeping?Is there an objective answer to who “the strongest Avenger” is?How did Banner get unstuck?Why did Thanos get hit?How did Thanos (or anyone) know the Infinity Stones would give him this power?Did Thanos leave Eitri alive for his after-sales service?In Avengers 1, why does Thanos need Loki?

                    Image
                    German characters on US-International keyboard layout Why is tomato paste so cheap? what does a native speaker say when he wanted to leave his work? Can a tourist shoot a gun in the USA? Extracting sublists that contain similar elements Why does the headset man not get on the tractor? What kind of SATA connector is this? Help in identifying a mystery wall socket Unexpected Netflix account registered to my Gmail address - any way it could be a hack attempt? Anatomically Correct Carnivorous Tree declared variable inside void setup is forgotten in void loop What is the largest number of identical satellites launched together? Automatically anti-predictably assemble an alliterative aria What information do scammers need to withdraw money from an account? Rounding a number extracted by jq to limit the decimal points Tikz draw contour without some edges, and fill What should a student do when they are the victim of a FERPA violation? How exactly does artific...
                    Read more