Lucene search
K

37 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.277 views

Apache < 1.3.37, 2.0.59, 2.2.3 (mod_rewrite) Remote Overflow PoC

No description provided by source. !/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack jack\x40gulcas\x2Eorg 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the RewriteRule kung/. $1 rule if not you must...

7.6CVSS9.5AI score0.96436EPSS
Exploits20
OpenVAS
OpenVAS
added 2010/05/12 12:0 a.m.54 views

Mac OS X 10.5.3 Update / Mac OS X Security Update 2008-003

The remote host is missing Mac OS X 10.5.3 Update / Mac OS X Security Update 2008-003. One or more of the following components are affected: AFP Server Apache AppKit Apple Pixlet Video ATS CFNetwork CoreFoundation CoreGraphics CoreTypes CUPS Flash Player Plug-in Help Viewer iCal International...

10CVSS0.2AI score0.96436EPSS
Exploits39
Circl
Circl
added 2010/02/15 12:0 a.m.11 views

CVE-2006-3747

creationtimestamp| type| source ---|---|--- 2010-02-15 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16752 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/apachemodrewriteldap.rb 2025-02-06 03:13:38+00:00|...

7.6CVSS7.1AI score0.96436EPSS
Exploits20References2
Packet Storm
Packet Storm
added 2009/11/26 12:0 a.m.129 views

Apache module mod_rewrite LDAP protocol Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Apache modul...

7.6CVSS0.5AI score0.96436EPSS
Exploits20
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.40 views

SLES9: Security update for Apache and mod_ssl

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: modssl apache For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5018358 within t...

7.6CVSS6.6AI score0.96436EPSS
Exploits20References1
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.35 views

SLES9: Security update for Apache2

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: apache2-worker apache2 apache2-prefork For more information, please visit the referenced security advisories. More details may also be found by searching for...

4.3CVSS6.7AI score0.73692EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.38 views

SLES9: Security update for Apache and mod_ssl

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: modssl apache For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5018358 within t...

7.6CVSS0.4AI score0.96436EPSS
Exploits20
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.29 views

Fedora Update for httpd FEDORA-2007-617

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS6.8AI score0.27783EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.33 views

Gentoo Security Advisory GLSA 200608-01 (apache)

The remote host is missing updates announced in advisory GLSA 200608-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.6CVSS0.7AI score0.96436EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2008/05/29 12:0 a.m.57 views

Mac OS X 10.5.x < 10.5.3 Multiple Vulnerabilities

The remote host is running a version of Mac OS X 10.5.x that is prior to 10.5.3. Mac OS X 10.5.3 contains security fixes for a number of programs. C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; if NASLLEVEL 3004 exit0; include"compat.inc"; if description scriptid32477;...

10CVSS7.3AI score0.96436EPSS
Exploits39References41
Tenable Nessus
Tenable Nessus
added 2008/05/29 12:0 a.m.45 views

Mac OS X Multiple Vulnerabilities (Security Update 2008-003)

The remote host is running a version of Mac OS X 10.4 that does not have the security update 2008-003 applied. This update contains security fixes for a number of programs. C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; if NASLLEVEL 3004 exit0; include"compat.inc"; if descripti...

10CVSS7.3AI score0.96436EPSS
Exploits39References41
Tenable Nessus
Tenable Nessus
added 2008/03/26 12:0 a.m.211 views

Apache < 1.3.37 mod_rewrite LDAP Protocol URL Handling Overflow

The remote host appears to be running a version of Apache which is older than 1.3.37. This version contains an off-by-one buffer overflow in the modrewrite module. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid31654; scriptversion"1.26"; scriptcvsdate"Date: 2018/11/1...

7.6CVSS7.7AI score0.96436EPSS
Exploits20References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.40 views

Debian Security Advisory DSA 1132-1 (apache2)

The remote host is missing an update to apache2 announced via advisory DSA 1132-1. Mark Dowd discovered a buffer overflow in the modrewrite component of apache, a versatile high-performance HTTP server. In some situations a remote attacker could exploit this to execute arbitrary code. OpenVAS...

7.6CVSS1AI score0.96436EPSS
Exploits20
Packet Storm
Packet Storm
added 2008/01/07 12:0 a.m.99 views

apache-mod-rewrite.rb.txt

require 'msf/core' module Msf class Exploits::Windows::Http::Apachemodrewrite 'Apache ModRewrite escapeabsoluteuri Off-By-One Buffer Overflow', 'Description' = %q This module exploits a off-by-one buffer overflow. RewriteRule must be enabled and rule must meets this criteria: beginning of the...

7.6CVSS9.5AI score0.96436EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.36 views

SuSE 10 Security Update : Apache2 (ZYPP Patch Number 1906)

This update fixes security problems in the Apache2 webserver : modrewrite: Fixed an off-by-one security problem in the ldap scheme handling. For some RewriteRules this could lead to a pointer being written out of bounds. CVE-2006-3747 For SUSE Linux Enterprise Server 10 additionally an old securi...

7.6CVSS6.4AI score0.96436EPSS
Exploits20References4
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.33 views

openSUSE 10 Security Update : apache2 (apache2-1905)

This update fixes the following security problem in the Apache webserver : modrewrite: Fix an off-by-one security problem in the ldap scheme handling. For some RewriteRules this could lead to a pointer being written out of bounds. CVE-2006-3747 %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

7.6CVSS7.4AI score0.96436EPSS
Exploits20References1
Saint
Saint
added 2007/06/22 12:0 a.m.68 views

Apache mod_rewrite LDAP URL buffer overflow

Added: 06/22/2007 CVE: CVE-2006-3747 BID: 19204 OSVDB: 27588 Background modrewrite is an Apache module which allows rule-based modification of URL requests. Problem An off-by-one buffer overflow vulnerability in modrewrite allows command execution when the escapeabsoluteuri function attempts to...

7.6CVSS9.8AI score0.96436EPSS
Exploits20
Saint
Saint
added 2007/06/22 12:0 a.m.98 views

Apache mod_rewrite LDAP URL buffer overflow

Added: 06/22/2007 CVE: CVE-2006-3747 BID: 19204 OSVDB: 27588 Background modrewrite is an Apache module which allows rule-based modification of URL requests. Problem An off-by-one buffer overflow vulnerability in modrewrite allows command execution when the escapeabsoluteuri function attempts to...

7.6CVSS9.8AI score0.96436EPSS
Exploits20
seebug.org
seebug.org
added 2007/04/10 12:0 a.m.255 views

Apache Mod_Rewrite Off-by-one Remote Overflow Exploit (win32)

No description provided by source. !/bin/sh Exploit for Apache modrewrite off-by-oneWin32. by axis axis@ph4nt0m http://www.ph4nt0m.org 2007-04-06 Tested on Apache 2.0.58 Win32 Windows2003 CN SP1 Vulnerable Apache Versions: 1.3 branch: 1.3.28 and 1.3.37 2.0 branch: 2.0.46 and 2.0.59...

7.6CVSS9.5AI score0.96436EPSS
Exploits20
exploitpack
exploitpack
added 2007/04/07 12:0 a.m.57 views

Apache mod_rewrite (Windows x86) - Off-by-One Remote Overflow

Apache modrewrite Windows x86 - Off-by-One Remote Overflow !/bin/sh Exploit for Apache modrewrite off-by-oneWin32. by axis http://www.ph4nt0m.org 2007-04-06 Tested on Apache 2.0.58 Win32 Windows2003 CN SP1 Vulnerable Apache Versions: 1.3 branch: 1.3.28 and 2.0.46 and 2.2.0 and 2006-08-20...

7.6CVSS0.7AI score0.96436EPSS
Exploits20
Rows per page
Query Builder