系统安全加固方案-7

1/4系统安全加固方案2/4文档说明3/41.Apache漏洞1.1漏洞清单序号漏洞信息影响范围1ApacheCommonsFileUpload和Tomcat拒绝服务漏洞(CVE-2014-0050)ApacheTomcatDIGEST身份验证多个安全漏洞(CVE-2012-3439)ApacheTomcatFORM认证器会话固定漏洞(CVE-2013-2067)ApacheTomcatFORM身份验证安全绕过漏洞ApacheTomcatHTTPDigestAccessAuthentication安全绕过漏洞(CVE-2012-5886)ApacheTomcatHTTPDigestAccessAuthentication实现安全漏洞(CVE-2012-5887)ApacheTomcatreplay-countermeasure功能安全漏洞ApacheTomcatSecurityManager绕过漏洞(CVE-2014-7810)ApacheTomcatXML外部实体信息泄露漏洞(CVE-2013-4590)ApacheTomcat安全漏洞(CVE-2014-0227)ApacheTomcat拒绝服务漏洞(CVE-2012-3544)ApacheTomcat跨站请求伪造漏洞ApacheTomcat块请求远程拒绝服务漏洞（CVE-2014-0075）ApacheTomcat权限许可和访问控制漏洞(CVE-2014-0096)ApacheTomcat权限许可和访问控制漏洞(CVE-2014-0119)ApacheTomcat输入验证漏洞(CVE-2013-4286)ApacheTomcat输入验证漏洞(CVE-2013-4322)ApacheTomcat整数溢出漏洞(CVE-2014-0099)10.147.128.188;4/4ApacheTomcat拒绝服务漏洞(CVE-2014-0230)ApacheTomcat任意文件上传漏洞(CVE-2013-4444)1.2加固方案1.3回退方案1.4加固结果已加固