-
Bug
-
Resolution: Unresolved
-
Undefined
-
None
-
rhel-8.10.z
-
None
-
None
-
None
-
rhel-sst-cs-stacks
-
ssg_core_services
-
None
-
False
-
-
None
-
None
-
None
-
None
-
None
What were you trying to do that didn't work?
Running /CoreOS/httpd/security/CVE-2006-3747
Please provide the package NVR for which bug is seen:
httpd-2.4.37-65.module+el8.10.0+22069+b47f5c72.1.x86_64
How reproducible:
Running /CoreOS/httpd/security/CVE-2006-3747
Expected results
:: [ 14:07:39 ] :: [ BEGIN ] :: Run the test :: actually running 'curl http://localhost/rhts-cve-3747-ldap%3A//www.test.com/test%3Faaaa%3Faaaa%3Faaaa%3Faaaa%3FXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxx > output' % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 100 471 100 471 0 0 459k 0 --:--:-- --:--:-- --:--:-- 459k :: [ 14:07:39 ] :: [ PASS ] :: Run the test (Expected 0, got 0) <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>302 Found</title> </head><body> <h1>Found</h1> <p>The document has moved <a href="ldap://www.test.com/test?aaaa?aaaa?aaaa?aaaa%3fXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxx">here</a>.</p> </body></html> :: [ 14:07:39 ] :: [ PASS ] :: File 'output' should contain '302 Found' :: [ 14:07:49 ] :: [ PASS ] :: File '/var/log/httpd/error_log' should not contain 'Segmentation fault'
Actual results
:: [ 14:49:17 ] :: [ BEGIN ] :: Run the test :: actually running 'curl http://localhost/rhts-cve-3747-ldap%3A//www.test.com/test%3Faaaa%3Faaaa%3Faaaa%3Faaaa%3FXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxxXXXXXXXXxxxxxxxx > output' % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 0 0 0 0 0 0 0 0 --:--:-- 0:00:02 --:--:-- 0 0 0 0 0 0 0 0 0 --:--:-- 0:00:04 --:--:-- 0 100 199 100 199 0 0 41 0 0:00:04 0:00:04 --:--:-- 41 100 199 100 199 0 0 41 0 0:00:04 0:00:04 --:--:-- 41 :: [ 14:49:22 ] :: [ PASS ] :: Run the test (Expected 0, got 0) <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>403 Forbidden</title> </head><body> <h1>Forbidden</h1> <p>You don't have permission to access this resource.</p> </body></html> :: [ 14:49:22 ] :: [ FAIL ] :: File 'output' should contain '302 Found' :: [ 14:49:32 ] :: [ PASS ] :: File '/var/log/httpd/error_log' should not contain 'Segmentation fault'
