Apache 'mod_proxy_ftp' Module Command Injection Vulnerability
I am getting following alert in report generated for Bugzilla:
Apache 'mod_proxy_ftp' Module Command Injection Vulnerability (Linux)
Overview: The host is running Apache and is prone to Command Injection
The flaw is due to error in the mod_proxy_ftp module which can be exploited
via vectors related to the embedding of these commands in the Authorization
Successful exploitation could allow remote attackers to bypass intended access
restrictions in the context of the affected application, and can cause the
arbitrary command injection.
Impact Level: Application
Apache HTTP Server on Linux.
Risk factor: High
Summary: Check for the version of Apache
Version: $Revision: 1.0$
apart from upgrading apache is there anything that can be done to resolve this issue?
Thanks & regards