'; } else{ echo ''; } echo 'Hillstone Networks'; } elseif ($_SERVER[HTTP_HOST] == "update1.huaantech.com.cn") { echo ''; echo 'huaantech'; } elseif ($_SERVER[HTTP_HOST] == "update1.dcnetworks.com.cn") { echo ''; echo 'dcnetworks'; } elseif ($_SERVER[HTTP_HOST] == "update1.w-ibeda.com") { if (false===strpos($_SERVER[REQUEST_URI],"/en/")) echo ''; else echo ''; echo 'w-ibeda'; } elseif ($_SERVER[HTTP_HOST] == "update1.hp-telecom.com") { echo ''; echo 'hp-telecom'; } elseif ($_SERVER[HTTP_HOST] == "update1.maipu.com") { echo ''; echo 'Maipu'; } elseif ($_SERVER[HTTP_HOST] == "update1.ncurity.com") { echo ''; echo 'Ncurity'; } elseif ($_SERVER[HTTP_HOST] == "update1.socusnetwork.com") { echo ''; echo 'Socusnetwork'; } else{ echo ''; echo 'Hillstone Networks'; } ?>
 
   
 

vul_srv:apache_mod_cache(Rule ID:1070010015)

Release Date2025/9/15

Rule NameCVE-2007-1863: Apache mod_cache Module Denial of Service

Severity:mid

CVE IDCVE-2007-1863

 

Descripiton

Apache HTTP Server, colloquially called Apache, is the world's most used Web server software. Apache is develop and maintained by an open coummunity of developers under the auspices of the Apache Software Foundation. cache_util.c in the mod_cache in Apache, when caching is enabled and a threaded Multi-Processing Module(MPM) is used, allows remote attackers to cause a denial of service via a request with the (1)s-maxage, (2)max-age, (3)min-fresh, or (4)max-stale Cache-Control headers without a value. This rule supports to defend the A6: Vulnerable and Outdated Components of OWASP Top 10 - 2021.
Other reference:None

 

Solution

Update vendor patches.