Lucene search
Apache Team FoundationHTTPD:49F10A242AB057B651259425C3E680F4HistoryDec 25, 2008 - 12:00 a.m.
Apache Httpd < 2.2.12 : APR-util heap underwrite
2008-12-2500:00:00
Apache Team Foundation
httpd.apache.org
11
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.036 Low
EPSS
Percentile
91.7%
A heap-based underwrite flaw was found in the way the bundled copy of the APR-util library created compiled forms of particular search patterns. An attacker could formulate a specially-crafted search keyword, that would overwrite arbitrary heap memory locations when processed by the pattern preparation engine.
Related
seebug
seebug
Apache APR-utilεΊapr_strmatch_precompile()ε½ζ°ζ΄ζ°δΈζΊ’ζΌζ΄
2009-06-09 00:00:00
debiancve
debiancve
CVE-2009-0023
2009-06-08 01:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1812-1] New apr-util packages fix several vulnerabilities
2009-06-05 00:00:00
Apache apr-util webDav DoS
2009-06-05 00:00:00
osv
osv
apr-util - several vulnerabilities
2009-06-04 00:00:00
nvd
nvd
CVE-2009-0023
2009-06-08 01:00:00
cve
cve
CVE-2009-0023
2009-06-08 01:00:00
cvelist
cvelist
CVE-2009-0023
2009-06-06 18:00:00
ubuntucve
ubuntucve
CVE-2009-0023
2009-06-08 00:00:00
prion
prion
Heap overflow
2009-06-08 01:00:00
openvas
openvas
Debian Security Advisory DSA 1812-1 (apr-util)
2009-06-09 00:00:00
Slackware Advisory SSA:2009-167-02 apr-util
2012-09-11 00:00:00
Slackware: Security Advisory (SSA:2009-167-02)
2012-09-10 00:00:00
debian
debian
[SECURITY] [DSA 1812-1] New apr-util packages fix several vulnerabilities
2009-06-04 19:22:36
nessus
nessus
Fedora 10 : apr-util-1.3.9-1.fc10 (2009-8318)
2009-08-07 00:00:00
Slackware 11.0 / 12.0 / 12.1 / 12.2 / current : apr-util (SSA:2009-167-02)
2009-06-17 00:00:00
Fedora 11 : apr-util-1.3.9-1.fc11 (2009-8349)
2009-08-10 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: apr-util-1.3.9-1.fc10
2009-08-07 04:57:24
[SECURITY] Fedora 11 Update: apr-util-1.3.9-1.fc11
2009-08-07 05:05:13
[SECURITY] Fedora 11 Update: apr-util-1.3.7-1.fc11
2009-06-24 19:36:44
oraclelinux
oraclelinux
httpd security update
2009-06-17 00:00:00
apr-util security update
2009-06-16 00:00:00
centos
centos
httpd, mod_ssl security update
2009-06-17 14:02:38
apr security update
2009-06-19 09:53:07
ubuntu
ubuntu
apr-util vulnerabilities
2009-06-10 00:00:00
Apache vulnerabilities
2009-06-11 00:00:00
freebsd
freebsd
apr -- multiple vulnerabilities
2009-06-05 00:00:00
apache22 -- several vulnerabilities
2009-07-28 00:00:00
redhat
redhat
(RHSA-2009:1108) Moderate: httpd security update
2009-06-16 00:00:00
(RHSA-2009:1107) Moderate: apr-util security update
2009-06-16 00:00:00
gentoo
gentoo
APR Utility Library: Multiple vulnerabilities
2009-07-04 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2013
2013-04-16 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.036 Low
EPSS
Percentile
91.7%
Related for HTTPD:49F10A242AB057B651259425C3E680F4