HP Security Bulletin – Potential security vulnerabilities have been identified with HP-UX running Apache-based Web Server or Tomcat-based Servelet Engine. The vulnerabilities could be exploited remotely to cause a Denial of Service (DoS), cross-site scripting (XSS), execution of arbitrary code, or cross-site request forgery (CSRF). Apache-based Web Server and Tomcat-based Servelet Engine are contained in the Apache Web Server Suite.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/74633/SSRT090005.txt
Source: https://packetstormsecurity.com/files/74633/HP-Security-Bulletin-2009-00.5.html