12-03-2012 10:06 AM
Are these vulnerabilities fixed in a later version of the FABOS? Like 6.4.3c or 7.x.x?
MEDIUM RISK: Apache HTTP Server HTTPOnly Cookie
MEDIUM RISK: NSF Exported Filesystems List Vulnerability
LOW RISK: Hidden RPC Services
LOW RISK: TCP Sequence Number Approximation Based
LOW RISK: NSF RPC Services Listening on Non-Privileged
LOW RISK: UDP Constant IP Identification Field
12-04-2012 07:32 AM
In the following link you can check which version of Oper Source Code applications, such as Apache, are installed in each FOS release:
If you know the code version that contains a fix for those vulnerabilities, it'd be easy for you to check it out.