Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable4579.PRM
HistoryAug 18, 2004 - 12:00 a.m.

Apache < 2.2.9 Multiple Vulnerabilities

2004-08-1800:00:00
Tenable
www.tenable.com
20
JSON

According to its banner, the version of Apache 2.2 installed on the remote host is older than 2.2.9. Such versions may be affected by several issues, including :

  • Improper handling of excessive forwarded interim responses may cause denial of service conditions in mod_proxy_http (CVE-2008-2364).
  • A cross-site request forgery vulnerability in the balancer-manager interface of mod_proxy_balancer (CVE-2007-6420).
  • An issue exists in the handling of the ‘Options’ and ‘AllowOverride’ directives (CVE-2009-1195).

Note that the remote web server may not actually be affected by these vulnerabilities. NNM cannot determine whether the affected modules are in use.

Binary data 4579.prm
VendorProductVersionCPE
apachehttp_server2.0cpe:/a:apache:http_server:2.0

Related

nessus 44
freebsd 2
altlinux 6
openvas 86
securityvulns 7
gentoo 2
redhat 5
prion 3
veracode 3
seebug 4
debiancve 3
httpd 4
ubuntucve 3
checkpoint_advisories 1
cve 3
fedora 3
debian 1
ubuntu 2
centos 2
oraclelinux 2
suse 1
slackware 1
kaspersky 1
oracle 1
nessus
nessus
FreeBSD : apache -- multiple vulnerabilities (c84dc9ad-41f7-11dd-a4f9-00163e000016)
2008-06-24 00:00:00
Apache 2.2.x < 2.2.9 Multiple Vulnerabilities (DoS, XSS)
2008-07-11 00:00:00
GLSA-200807-06 : Apache: Denial of Service
2008-07-10 00:00:00
freebsd
freebsd
apache -- multiple vulnerabilities
2008-06-14 00:00:00
apache22 -- several vulnerabilities
2009-07-28 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.2.9-alt1
2008-07-08 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.9-alt1
2008-07-08 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.9-alt1
2008-07-08 00:00:00
openvas
openvas
FreeBSD Ports: apache
2008-09-04 00:00:00
FreeBSD Ports: apache
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200807-06 (apache)
2008-09-24 00:00:00
securityvulns
securityvulns
[ GLSA 200807-06 ] Apache: Denial of Service
2008-07-12 00:00:00
Apache protection bypass
2009-06-01 00:00:00
Apache multiple DoS conditions
2008-07-12 00:00:00
gentoo
gentoo
Apache: Denial of service
2008-07-09 00:00:00
Apache: Multiple vulnerabilities
2009-07-12 00:00:00
redhat
redhat
(RHSA-2008:0966) Moderate: Red Hat Application Stack v2.2 security and enhancement update
2008-12-04 00:00:00
(RHSA-2008:0967) Moderate: httpd security and bug fix update
2008-11-11 00:00:00
(RHSA-2009:1075) Moderate: httpd security update
2009-05-27 00:00:00
prion
prion
Cross site request forgery (csrf)
2008-01-12 00:46:00
Design/Logic Flaw
2008-06-13 18:41:00
Design/Logic Flaw
2009-05-28 20:30:00
veracode
veracode
Cross-Site Request Forgery (CSRF)
2020-04-10 00:29:43
Denial Of Service (DoS)
2020-04-10 00:29:44
Privilege Escalation
2020-04-10 00:33:35
seebug
seebug
Apache 'mod_proxy_http' Interim Response Denial of Service Vulnerability
2010-05-12 00:00:00
Apache HTTP Server &quot;AllowOverride&quot;和&quot;Options&quot;安全绕过漏洞
2009-06-02 00:00:00
Apache HTTP Server AllowOverride选项绕过安全限制漏洞
2009-06-22 00:00:00
debiancve
debiancve
CVE-2007-6420
2008-01-12 00:46:00
CVE-2008-2364
2008-06-13 18:41:00
CVE-2009-1195
2009-05-28 20:30:00
httpd
httpd
Apache Httpd < 2.2.9 : mod_proxy_balancer CSRF
2007-10-12 00:00:00
Apache Httpd < 2.2.9 : mod_proxy_http DoS
2008-05-29 00:00:00
Apache Httpd < 2.2.12 : AllowOverride Options handling bypass
2009-03-09 00:00:00
ubuntucve
ubuntucve
CVE-2007-6420
2008-01-12 00:00:00
CVE-2008-2364
2008-06-13 00:00:00
CVE-2009-1195
2009-05-28 00:00:00
checkpoint_advisories
checkpoint_advisories
Update Protection against Apache mod_proxy Interim Responses Denial of Service
2009-01-09 00:00:00
cve
cve
CVE-2007-6420
2008-01-12 00:46:00
CVE-2008-2364
2008-06-13 18:41:00
CVE-2009-1195
2009-05-28 20:30:00
fedora
fedora
[SECURITY] Fedora 8 Update: httpd-2.2.9-1.fc8
2008-08-07 23:57:20
[SECURITY] Fedora 9 Update: httpd-2.2.9-1.fc9
2008-08-07 23:48:09
[SECURITY] Fedora 11 Update: httpd-2.2.13-1.fc11
2009-08-31 23:39:38
debian
debian
[SECURITY] [DSA 1816-1] New apache2 packages fix privilege escalation
2009-06-16 19:56:30
ubuntu
ubuntu
Apache vulnerabilities
2009-03-10 00:00:00
Apache vulnerabilities
2009-06-11 00:00:00
centos
centos
httpd, mod_ssl security update
2009-05-28 17:08:08
httpd, mod_ssl security update
2008-11-11 20:45:50
oraclelinux
oraclelinux
httpd security and bug fix update
2008-11-11 00:00:00
httpd security update
2009-05-27 00:00:00
suse
suse
potential code execution in apache2,libapr1
2009-10-26 13:21:56
slackware
slackware
httpd
2009-08-02 15:33:03
kaspersky
kaspersky
KLA10066 Multiple vulnerabilities in Apache httpd
2010-10-19 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2013
2013-07-16 00:00:00
JSON
Related for 4579.PRM
nessus44freebsd2altlinux6openvas86securityvulns7gentoo2redhat5prion3veracode3seebug4debiancve3httpd4ubuntucve3checkpoint_advisories1cve3fedora3debian1ubuntu2centos2oraclelinux2suse1slackware1kaspersky1oracle1