Lucene search
Prutha ParikhEDB-ID:36352HistoryNov 24, 2011 - 12:00 a.m.
Apache 7.0.x mod_proxy - Reverse Proxy Security Bypass
2011-11-2400:00:00
Prutha Parikh
www.exploit-db.com
183
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/50802/info
Apache HTTP Server is prone to a security-bypass vulnerability.
Successful exploits will allow attackers to bypass certain security restrictions and obtain sensitive information about running web applications.
The following example patterns are available:
RewriteRule ^(.*) http://www.example.com$1
ProxyPassMatch ^(.*) http://www.example.com$1 Related
seebug
seebug
Apache HTTP Server mod_proxyๅๅไปฃ็ๆจกๅผๅฎๅ
จ้ๅถ็ป่ฟๆผๆด
2011-11-25 00:00:00
httpd
httpd
Apache Httpd < 2.2.22 : mod_proxy reverse proxy exposure
2011-10-20 00:00:00
openvas
openvas
Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability
2011-10-11 00:00:00
Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability
2011-10-11 00:00:00
Mandriva Update for apache MDVSA-2012:003 (apache)
2012-01-13 00:00:00
ubuntucve
ubuntucve
CVE-2011-4317
2011-11-29 00:00:00
cve
cve
CVE-2011-4317
2011-11-30 04:05:58
nvd
nvd
CVE-2011-4317
2011-11-30 04:05:58
veracode
veracode
Unauthorized Reverse Proxy Connection
2020-04-10 01:10:16
nessus
nessus
Apache HTTP Server mod_proxy Reverse Proxy Information Disclosure
2011-11-29 00:00:00
Mandriva Linux Security Advisory : apache (MDVSA-2012:003)
2012-01-11 00:00:00
openSUSE Security Update : apache2 (openSUSE-SU-2012:0212-1)
2014-06-13 00:00:00
debiancve
debiancve
CVE-2011-4317
2011-11-30 04:05:58
prion
prion
Design/Logic Flaw
2011-11-30 04:05:00
cvelist
cvelist
CVE-2011-4317
2011-11-30 02:00:00
securityvulns
securityvulns
Apache mod_proxy unauthorized internal network access
2012-01-11 00:00:00
Apache multiple security vulnerabilities
2012-02-03 00:00:00
[Announce] Apache HTTP Server 2.2.22 Released
2012-02-03 00:00:00
thn
thn
New Apache Reverse Proxy Flaw Allows Access to Internal Network
2011-11-27 08:58:00
f5
f5
fedora
fedora
[SECURITY] Fedora 16 Update: httpd-2.2.22-1.fc16
2012-02-21 01:28:42
[SECURITY] Fedora 15 Update: httpd-2.2.22-1.fc15
2012-03-06 19:30:50
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2012-02-16 00:00:00
slackware
slackware
[slackware-security] httpd
2012-02-10 17:43:57
debian
debian
[SECURITY] [DSA 2405-1] apache2 security update
2012-02-06 09:06:39
[SECURITY] [DSA 2405-1] apache2 security update
2012-02-06 09:06:39
altlinux
altlinux
Security fix for the ALT Linux 9 package apache2 version 2.2.22-alt1
2012-02-02 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.22-alt1
2012-02-02 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.22-alt1
2012-02-02 00:00:00
osv
osv
apache2 - multiple issues
2012-02-06 00:00:00
apache2-2.4.23-4.1 on GA media
2024-06-15 00:00:00
freebsd
freebsd
apache -- multiple vulnerabilities
2011-10-05 00:00:00
centos
centos
httpd, mod_ssl security update
2012-02-14 11:13:29
oraclelinux
oraclelinux
httpd security update
2012-02-13 00:00:00
httpd security, bug fix, and enhancement update
2013-02-22 00:00:00
redhat
redhat
(RHSA-2012:0128) Moderate: httpd security update
2012-02-13 00:00:00
amazon
amazon
Medium: httpd
2012-02-16 10:48:00
ibm
ibm
gentoo
gentoo
Apache HTTP Server: Multiple vulnerabilities
2012-06-24 00:00:00
hackerone
hackerone
U.S. Dept Of Defense: Out-of-date Version (Apache)
2016-11-24 15:09:27
oracle
oracle
Oracle Critical Patch Update - July 2012
2012-07-17 00:00:00
Oracle Critical Patch Update Advisory - January 2015
2015-03-10 00:00:00