It depends on distribution, at least enteprise linuxes backport fix without changing real version
Eero 2016-05-19 7:38 GMT+03:00 flymolon <[email protected]>: > Hi team, > Apache http server v2.2.10 suppose to have CVE-2010-0425, > but we have to set Report paranoia to let secpod_apache_detect.nasl set > kb "apache/installed", > then the gb_apache_38494.nasl reports the cve. > > Just judge the cve by detecting apache version is not prone to false > positive, is it? > If so, could you fix the behavior of depending preference of "Report > paranoia"? > > Thanks! > > ------------------------------ > flymolon > > _______________________________________________ > Openvas-discuss mailing list > [email protected] > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss >
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
