CCE-90787-3| Platform: rhel7,centos7 | Date: (C)2017-06-29 (M)2022-10-10 |
Disable HTTP mod_rewrite
The 'mod_rewrite' module is very powerful and can protect against
certain classes of web attacks. However, it is also very complex and has
Asignificant history of vulnerabilities itself. If its functionality is
unnecessary, comment out the related module:
'#LoadModule rewrite_module modules/mod_rewrite.so'
Parameter:
Technical Mechanism:
Minimizing the number of loadable modules available to the web server reduces risk
by limiting the capabilities allowed by the web server.
Fix:
No Remediation Info
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : | Attack Vector: |
| Exploit Score: | Attack Complexity: |
| Impact Score: | Privileges Required: |
| Severity: | User Interaction: |
| Vector: | Scope: |
| | Confidentiality: |
| | Integrity: |
| | Availability: |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:30471 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:31194 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:30471 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:31194 |
