Apache HTTP Server OPTIONS Memory Leak Vulnerability (Optionsbleed) - Version Check

Apache HTTP Server allows remote attackers to read secret data from process memory if the Limit directive can be set in a user SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Exploit for Use After Free in Apache Http_Server

optionsbleed ============ This is a proof of concept code to te...

Apache 2.2.34 2.4.27 - OPTIONS Memory Leak

Apache 2.2.34 2.4.27 - OPTIONS Memory Leak !/usr/bin/env python3 Optionsbleed proof of concept test by Hanno Böck import argparse import urllib3 import re def testbleedurl, args: r = pool.request'OPTIONS', url try: allow = strr.headers"Allow" except KeyError: return False if allow in dup: return...

http-methods NSE Script

Finds out what options are supported by an HTTP server by sending an OPTIONS request. Lists potentially risky methods. It tests those methods not mentioned in the OPTIONS headers individually and sees if they are implemented. Any output other than 501/405 suggests that the method is if not in the...