Lucene search
Apache Team FoundationHTTPD:FF76CF8F03BE59B7AD0119034B0022DBHistorySep 03, 2009 - 12:00 a.m.
Apache Httpd < 2.2.14 : mod_proxy_ftp FTP command injection
2009-09-0300:00:00
Apache Team Foundation
httpd.apache.org
15
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.01 Low
EPSS
Percentile
83.6%
A flaw was found in the mod_proxy_ftp module. In a reverse proxy configuration, a remote attacker could use this flaw to bypass intended access restrictions by creating a carefully-crafted HTTP Authorization header, allowing the attacker to send arbitrary commands to the FTP server.
Related
f5
f5
SOL80080243 - Apache vulnerability CVE-2009-3095
2015-12-23 00:00:00
K80080243 : Apache vulnerability CVE-2009-3095
2015-12-23 00:00:00
openvas
openvas
Apache 'mod_proxy_ftp' Module Command Injection Vulnerability (Linux)
2009-09-16 00:00:00
Apache HTTP Server 'mod_proxy_ftp' Module Command Injection Vulnerability
2009-09-16 00:00:00
Mandrake Security Advisory MDVSA-2009:240 (apache)
2009-09-28 00:00:00
veracode
veracode
Access Restriction Bypass
2020-04-10 00:36:56
cve
cve
CVE-2009-3095
2009-09-08 18:30:00
ubuntucve
ubuntucve
CVE-2009-3095
2009-09-08 00:00:00
prion
prion
Authorization
2009-09-08 18:30:00
httpd
httpd
Apache Httpd < 2.0.64 : mod_proxy_ftp FTP command injection
2009-09-03 00:00:00
debiancve
debiancve
CVE-2009-3095
2009-09-08 18:30:00
seebug
seebug
Apache mod_proxy_ftp樑εθΏη¨ε½δ»€ζ³¨ε
₯ζΌζ΄
2009-11-13 00:00:00
apache2 vulnerabilities
2009-11-20 00:00:00
securityvulns
securityvulns
Apache mod_proxy_ftp multiple security vulnerabilities
2010-03-31 00:00:00
[ MDVSA-2009:240 ] apache
2009-09-23 00:00:00
nessus
nessus
Slackware 12.0 / 12.1 / 12.2 / 13.0 / current : httpd (SSA:2010-024-01)
2010-01-25 00:00:00
Mandriva Linux Security Advisory : apache (MDVSA-2009:240)
2009-09-23 00:00:00
slackware
slackware
[slackware-security] httpd
2010-01-25 05:19:48
debian
debian
[SECURITY] [DSA-1934-1] New apache2 packages fix several issues
2009-11-16 19:30:33
[SECURITY] [DSA-1934-1] New apache2 packages fix several issues
2009-11-16 19:30:33
osv
osv
apache2 - several issues
2009-11-16 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: httpd-2.2.14-1.fc10
2009-12-10 04:17:40
[SECURITY] Fedora 11 Update: httpd-2.2.14-1.fc11
2010-02-27 03:41:04
[SECURITY] Fedora 12 Update: httpd-2.2.14-1.fc12
2009-12-18 04:22:30
redhat
redhat
(RHSA-2010:0011) Moderate: httpd and httpd22 security update
2010-01-06 00:00:00
(RHSA-2009:1579) Moderate: httpd security update
2009-11-11 00:00:00
(RHSA-2009:1580) Moderate: httpd security update
2009-11-11 00:00:00
oraclelinux
oraclelinux
httpd security update
2009-11-11 00:00:00
httpd security update
2009-11-11 00:00:00
centos
centos
httpd, mod_ssl security update
2009-11-12 22:37:02
httpd, mod_ssl security update
2009-11-12 22:39:15
ubuntu
ubuntu
Apache vulnerabilities
2009-11-19 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package apache2 version 2.2.14-alt1
2009-10-06 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.14-alt1
2009-10-06 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.14-alt1
2009-10-06 00:00:00
suse
suse
potential code execution in apache2,libapr1
2009-10-26 13:21:56
kaspersky
kaspersky
KLA10066 Multiple vulnerabilities in Apache httpd
2010-10-19 00:00:00
threatpost
threatpost
Apple Mega Patch Covers 88 Mac OS X Vulnerabilities
2010-03-29 17:15:44
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.01 Low
EPSS
Percentile
83.6%
Related for HTTPD:FF76CF8F03BE59B7AD0119034B0022DB