Cisco works LMS 4.0 ,Apache HTTP Server CVE-2011-3192 Denial Of Service Vulnerability

Cisco works LMS 4.0 ,Apache HTTP Server CVE-2011-3192 Denial Of Service Vulnerability
This vulnerability has been fixed in release apache 2.2.20 and further corrected
in 2.2.21. You are advised to upgrade to version 2.2.21 (or newer) or the
legacy 2.0.65 release,
Can any one give the steps to upgrade the apache http server 2.2.10 to 2.2.21 in windows 2008 server?

For the following PSIRT:
http://www.cisco.com/en/US/products/csa/cisco-sa-20110830-apache.html
Download the following patch "lms40-win-Oct2011-su1-0.zip" :
http://www.cisco.com/cisco/software/release.html?mdfid=283434800&flowid=19062&softwareid=280775103&os=Windows&release=4.0&relind=AVAILABLE&rellifecycle=&reltype=latest
The instructions should be in the zip file how to install the patch.
This should cover all theses bugs that you can query in the bug tool kit:
http://tools.cisco.com/Support/BugToolKit/action.do?hdnAction=searchBugs
CSCte45565
CSCto12712
CSCto23584
CSCto23622
CSCto35544
CSCto35577
CSCtq48990

Similar Messages

  • Cisco Works LMS 3.1 Integration with ACS v5.2

    Hello Experts,
    our customer has a working integration with the Cisco Works LMS 3.1 and an ACS v3.3 as it is described in this document:
    http://www.cisco.com/en/US/prod/collateral/netmgtsw/ps6504/ps6528/ps2425/prod_white_paper0900aecd80613f62.html
    Now we are changing the old ACS Servers to the new ACS v5.2 platform. Is it possible to integrate the LMS to the new ACS Server? We want to use a granular user access restriction for SuperAdmins, Hotline Users an so on...
    Thanks,
    Florian

    Hi Florian,
    actually the ACS 5.2 is not supported in CS 3.2
    here is a list of the supported ACS servers under LMS 3.1
    http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_common_services_software/3.2/user/guide/admin.html#wp865998

  • System Requeriments Cisco Works LMS 2.5

    Hi
    I need to know if the Cisco Works LMS 2.5 can be instaled in a Windows 2003 Server whith Service Pack 2 or i need to work whithout the SP2
    Thank?s

    LMS 2.5.1 is supported with windows server 2003 SP1or later
    http://www.cisco.com/en/US/products/sw/cscowork/ps2425/products_upgrade_guides_chapter09186a00805af1dc.html#wp1032750

  • Cisco Work (LMS 2.6) Device Configuration

    Hi,
    Can anyone tell me where is the default location of device configuration ( Running conf ) saved in Cisco Work (LMS 2.6) Server.
    Thanks & Regds,
    Lalit

    if you enable the so called shadow directory feature under:  Admin -> Config Mgmt -> Archive Mgmt -> Archive Settings
    then the defaut location is \CSCOpx\files\rme\dcma
    Cheers,
    Michel

  • Cisco works LMS 3.0.1 cannot archieve configuration for cisco 3000 series vpn concentrator

    Hi All,
    Our problem is, we have Cisco Works LMS 3.0.1. cannot archieve configuration for cisco 3000 series vpn concentrator.
    Any help would be greatly appreciated.
    Thanks in advance.
    Samir

    Make sure you have filled out all of the HTTP/HTTPS credential data in DCR for these devices.  RME will only use HTTPS to fetch VPN concentrator configurations.

  • Cisco works LMS 3.0.1 does not archiever configuration for cisco 7201 router

    Hi All,
    We have Cisco works LMS 3.0.1 and it does not archiever configuration for cisco 7201 router.
    Any help would be appriciated.
    Thanks in advance
    Samir

    Hi,
    *** Device Details for d0151-100 ***
    Protocol ==> Unknown / Not Applicable
    Selected Protocols with order ==> TFTP,SSH,HTTPS
    Execution Result:
    Unable to get results of job execution for device. Retry the job after increasing the job result wait time using the option:Resource Manager Essentials -> Admin -> Config Mgmt -> Archive Mgmt ->Fetch Settings
    This is the error while doing syn archieve.
    I am not sure about Rtr7000 version but we have latest Rtr7000.
    Waiting for your kind reply.
    Samir

  • Cannot connect to database with servlet thru apache http server / vhosts

    Hello,
    I have an application that works perfectly when Tomcat 5.5 is running stand-alone, but when I run Tomcat and Apache HTTP Server together, I get an error when trying to connect to the database. Servlets are working fine otherwise. Connection pooling is setup and working fine for Tomcat stand-alone. With the Apache server, I'm running Virtual Hosts.
    My guess is that I need something in the host block of server.xml about the context.xml where the db resource pool is defined. This is what I have so far in server.xml:
    <Host name="www.mydomain.com" debug="0" appBase="d:/WebApps/mydomain"
    unpackWARs="true" autoDeploy="true">
    <Context path="" docBase="" debug="0"/>
    </Host>
    Or the problem may be caused by something else entirely. Does anybody have any suggestions? Your help is greatly appreciated.
    Thank you,
    Logan

    A little help? Anybody?
    I can connect to the database with Tomcat stand-alone, but not with Tomcat integrated with Apache. I have seen this problem described elsewhere, but no solution has been found.

  • Policy Agent 2.2 for Apache HTTP Server

    hi,
    I'm trying to configure Policy Agent 2.2 for apache http server.
    The agent seems to be installed properly, in fact when I access the protected resource, I get the Access Manager login page.
    Then I log into access manager, but I'm redirected to an error page.
    Looking in log files I can see:
    agent's "amAgent" log file:
    Debug 10763:f8fe0 AuthService: HTTP Status = 200 (OK)
    Debug 10763:f8fe0 AuthService: Http::Response::readAndParse(): No content length in response.
    Debug 10763:f8fe0 ServiceEngine: Service::do_agent_auth_login(): Setting password callback.
    Debug 10763:f8fe0 ServiceEngine: Service::do_agent_auth_login(): Setting name callback to 'apache2Agent'.
    Debug 10763:f8fe0 AuthService: BaseService::sendRequest Cookie and Headers =Host: crmzone.company.icteam.it     
                   Cookie: JSESSIONID=193E5E1590C924A42B95A00A51DC0479;amlbcookie=01
    Debug 10763:f8fe0 AuthService: BaseService::sendRequest Content-Length =Content-Length: 620
    Debug 10763:f8fe0 AuthService: BaseService::sendRequest Header Suffix =Accept: text/xml
                   Content-Type: text/xml; charset=UTF-8
    Debug 10763:f8fe0 AuthService: HTTP Status = 200 (OK)
    Debug 10763:f8fe0 AuthService: Http::Response::readAndParse(): No content length in response.
    Error 10763:f8fe0 AuthService: AuthService::processLoginStatus() Exception message=[Application user ID is not valid.] errorCode='107' templateName=login_failed_template.jsp.
    Error 10763:f8fe0 PolicyEngine: am_policy_evaluate: InternalException in AuthService::processLoginStatus() with error message:Exception message=[Application user ID is not valid.] errorCode='107' templateName=login_failed_template.jsp and code:3
    Warning 10763:f8fe0 PolicyAgent: am_web_is_access_allowed()(http://10.0.0.31:80/SugarOS-Full-4.5.0f, GET) denying access: status = Access Manager authentication service failure
    Debug 10763:f8fe0 PolicyAgent: am_web_is_access_allowed(): Successfully logged to remote server for GET action by user unknown user to resource http://10.0.0.31:80/SugarOS-Full-4.5.0f.
    Info 10763:f8fe0 PolicyAgent: am_web_is_access_allowed()(http://10.0.0.31:80/SugarOS-Full-4.5.0f, GET) returning status: Access Manager authentication service failure.
    Info 10763:f8fe0 PolicyAgent: process_request(): Access check for URL http://10.0.0.31/SugarOS-Full-4.5.0f returned Access Manager authentication service failure.
    Debug 10763:f8fe0 PolicyAgent: process_request(): returning web result AM_WEB_RESULT_ERROR, data []
    Debug 10763:f8fe0 PolicyAgent: am_web_process_request(): Rendering web result AM_WEB_RESULT_ERROR
    Debug 10763:f8fe0 PolicyAgent: am_web_process_request(): render result function returned AM_SUCCESS.
    Access Manager's "amAuthentication.error" log file:
    "Login Failed|module_instance|Application" Application AUTHENTICATION-268 dc=opensso,dc=java,dc=net "Not Available" INFO apache2Agent 10.0.0.31 "cn=dsameuser,ou=DSAME Users,dc=opensso,dc=java,dc=net" CRMzone
    I tried to change the name of the agent either in its AMAgent.properties or in Access Manager "Agents" configuration page.
    I also used "crypt_util" to generate a new passoword, but nothing seems to happen.
    Where should I look to get more info about this problem? Specific log file?
    Is it due to wrong name/id/password of the agent? I really checked them many times...
    Thanks
    Fabio

    I think the error message "Application user ID is not valid" is pretty self evident.
    Log into the amconsole and go to the root realm/organization. Make sure the Agent profile exists and reset the password again to know value. If you created the agent profile in a sub realm/organization, you will need to make sure the subrealm/organization is set in the AMAgent.properties since the default value is / for the root realm/organization. Update the AMAgent.properties file will the Agent ID and the password generated by the crypt_it tool (com.sun.am.policy.am.username, com.sun.am.policy.am.password)
    If that doesn't work, check the amApplication debug log and then look at the ldap server access logs to see why the auth bind failed.

  • Apache http server won't run - error 1067 - after installing forms

    Hi, I succesfully installed the 9i on a Windows XP machine. I included the Apache HTTP server in the install. It all worked fine. Then I installed the Oracle development suite (rapid application development selection), and since cannot get the Apache server to run. It gives error 1067. On issueing "F:\oracle\ora90\Apache\Apache>apache.exe start -k" I get the following error: "Syntax error on line 14 of F:\oracle\ora90\rdbms\demo\aqxml.conf: Invalid command 'ApJServGroupMount', perhaps mis-spelled or defined by a module not included in the server configuration".
    Any ideas?? I amnew to both Oracle and Apache. Thanks for any help offered.

    did you install the development suite on a different Oracle home? In case it is on its own oracle home, it happens that the new install overwrites the PATH environment variable and sets the path of the new oracle home prior to the previously installed oracle home, this could affect old oracle home, since it will be looking for libraries and executables at the wrong OH. Change back the PATH environment variable, so the old OH is referred first.
    Start once more the oracle http server, first by means of the windows service, and verify the httpd.pid file doesn't exist prior to attempt restarting it.
    ~ Madrid

  • Cisco Works LMS HUM issue

    Hi,
    I am using Cisco works LMS 3.1 with HUM 1.1.0. I am receiving thresold and job schedule mail alert from HUM.
    It is showing error in JOB history  “Not able to connect the mail server” while alerts from RME,IPM,CS,DFM are coming on mail.
    I have Configured HUM just 3 days back and all others application had been configure 4 months back.
    Please help.
    Regards,
    DJ

    Hi Clarke,
    Thanks for response. Please see the attached HUM smtp error. I have tried the HUM JOB with sniffer to filter smtp port 25 traffic but nothing is reflecting
    in sniffer when trying to send mail through HUM while DFM,RME IPM mail are showing in sniffer and we are getting mail as well.
    I have upgraded HUM version from 1.1.0 to 1.1.2 but the error is same.
    Regards,
    Dinesh Joshi

  • Enable Apache HTTP Server

    Hello,
    I am still new to FMS... I have installed FMS 4.5 several weeks ago.. but at that time, i did not install Apache HTTP Server. ...
    So, if now i need to enable Apache HTTP Server, can I do install it now alone? or i need to re-install FMS4.5 to get it working?
    thanks

    Hello hparmar,
    thanks for the help and the information. Appreciated. I just want to make sure so that I donot mess things up. I am still very new into this:
    So i will download a copy of conf and application folder
    Install FMS again with http
    the replace the conf and application folder with the ones i downloaded before as back up...
    right? and do i need to uninstall the original server first? before re-installing it?
    Thanks

  • Need to do switches configuration archive using the cisco works LMS 3.2

    Hi folks,
            We have a cisco works LMS 3.2 bundle which contains Resource Manager Essentials 4.3.0 . I am trying to do config archive of all our network switches using RME. I have no idea how to do it . so i came here ...
    Guide me what are the things to be done in both switch side and RME side.

    Hi Mohammed,
    You can do this from here :
    RME > Admin > Config Mgmt > Archive Mgmt
    check the below linlk for more information:
    http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_resource_manager_essentials/4.3/user/guide/config.html#wp1070778
    Thanks-
    Afroz
    [Do rate the useful post]

  • Cisco Works LMS

    Can you monitor Mitel IP Tel on a Cisco router and switching environment? Customer has Mitel Voice but Cisco routers and switches. Will Cisco Works LMS provide functionality?

    See this page for a list of LMS white papers:
    http://www.cisco.com/en/US/products/sw/cscowork/ps2425/prod_white_papers_list.html
    You should fine some deployment guides for each of the various versions.  Those will help get you started.

  • Cisco Works LMS R3.1 with ACS R5.1

    I search on internet about the AAA integration between LMS R3.1 y ACS R5.1, and all the information that I found it's related to ACS R4.1. It's possible to integrate with ACS R5.1.
    Regards and thanks in advanced
    Luis Martinez

    Nael,
    Sorry to batter you, but I was trying to migrate my Cisco Works LMS R3.1 to R3.2 and from the support page of CISCO I just can donwload the following version LMS R3.2.1 (LMS R3.2 service pack 1). I tried to install that version but i got an error that saids "LMS R3.2.1 needs LMS R3.2 installed on the server"
    Could you please tell me where can I download the complete and initial LMS R3.2.
    Thanks in advanced for your kindly help.
    Luis Martinez

  • Apache http server won't run - error 1067

    Hi, I succesfully installed the latest version of Oracle RDBMS on a Windows XP machine. I included the APache HTTP server in the install. It all worked fine. Then I installed the Oracle development suite (rapid application development selection), and since cannot get the Apache server to run. It gives error 1067. On issueing "F:\oracle\ora90\Apache\Apache>apache.exe start -k" I get the following error: "Syntax error on line 14 of F:\oracle\ora90\rdbms\demo\aqxml.conf: Invalid command 'ApJServGroupMount', perhaps mis-spelled or defined by a module not included in the server configuration".
    Any ideas?? I amnew to both Oracle and Apache. Thanks for any help offered.

    I have exactly the same problem... does anyone have any ideas how do I solve it.

Maybe you are looking for

  • Error in creating BAI File with program - RFEBKAT5

    Hi All I have an issues in Creating a BAI test file for Electronics bank Statement Document is Getting Posted (Document number is getting created)         Statement File (detail)                Recon1 (Green)                Lines (green)             

  • I just re-installed fonts from a third disk in my Create Suite 5, but can't find CLASSIC CURSIVE FONTS in my selctions.

    I am in the process of re-installing ADOBE CREATIVE SUITE 5 DESIGN PREMIUM because I had to change my hard drive. I haven't done this for years. There is a disk that came with the Suite called "CONTENT." It contains FONTS. I followed the instructions

  • Check Copies

    Hi All, I am having an issue that it is not possible to print a copy of your check on blank stock while trying to print your original from the Document Printing window.  For Example, I want to print check #1, and I would like to print a copy of check

  • Regarding import audio during 1080p sequence

    I have footage that i filmed at 30fps, and when i set up the project i set the settings to the "1080p 30fps" setting. Then,  i import my mp3 song onto the timeline and when i press the play button in the "preview window" the music plays but it starts

  • Photos not sending

    My phone is not sending pictures to my personal email address, what could be the problem?


HashFlare