Fedora Update for cherokee FEDORA-2011-14634

Check for the Version of cherokee OpenVAS Vulnerability Test Fedora Update for cherokee FEDORA-2011-14634 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Debian DSA-2327-1 : libfcgi-perl - authentication bypass

Ferdinand Smit discovered that FCGI, a Perl module for writing FastCGI applications, is incorrectly restoring environment variables of a prior request in subsequent requests. In some cases this may lead to authentication bypasses or worse. The oldstable distribution lenny is not affected by this...

[SECURITY] [DSA 2327-1] libfcgi-perl security-update

-------------------------------------------------------------------------- Debian Security Advisory DSA-2327-1 [email protected] http://www.debian.org/security/ Nico Golde Oct 24th, 2011 http://www.debian.org/security/faq -...

Fedora Update for perl-FCGI FEDORA-2011-13230

Check for the Version of perl-FCGI OpenVAS Vulnerability Test Fedora Update for perl-FCGI FEDORA-2011-13230 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Fedora Update for perl-FCGI FEDORA-2011-13236

Check for the Version of perl-FCGI OpenVAS Vulnerability Test Fedora Update for perl-FCGI FEDORA-2011-13236 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

[SECURITY] Fedora 15 Update: perl-FCGI-0.74-1.fc15

FastCGI Perl bindings...

[SECURITY] Fedora 14 Update: perl-FCGI-0.74-1.fc14

FastCGI Perl bindings...

Fedora Update for cherokee FEDORA-2011-12687

Check for the Version of cherokee OpenVAS Vulnerability Test Fedora Update for cherokee FEDORA-2011-12687 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora Update for cherokee FEDORA-2011-12698

Check for the Version of cherokee OpenVAS Vulnerability Test Fedora Update for cherokee FEDORA-2011-12698 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

[SECURITY] Fedora 14 Update: cherokee-1.2.99-1.fc14

Cherokee is a very fast, flexible and easy to configure Web Server. It supp orts the widespread technologies nowadays: FastCGI, SCGI, PHP, CGI, TLS and SSL encrypted connections, Virtual hosts, Authentication, on the fly encoding, Apache compatible log files, and much more...

[SECURITY] Fedora 15 Update: cherokee-1.2.99-1.fc15

Cherokee is a very fast, flexible and easy to configure Web Server. It supp orts the widespread technologies nowadays: FastCGI, SCGI, PHP, CGI, TLS and SSL encrypted connections, Virtual hosts, Authentication, on the fly encoding, Apache compatible log files, and much more...

DEBIAN-CVE-2011-2766

The FCGI aka Fast CGI module 0.70 through 0.73 for Perl, as used by CGI::Fast, uses environment variable values from one request during processing of a later request, which allows remote attackers to bypass authentication via crafted HTTP headers...

Nginx %0 0 empty bytes to execute arbitrary code(php)vulnerability-vulnerability warning-the black bar safety net

Ngnix in the encounter%0 0 empty bytes when the back-end FastCGI process is inconsistent, resulting in images embedded in the PHP code and then by accessing the xxx. jpg%0 0. php to execute the code Affected versions: nginx 0.5. nginx 0.6. nginx 0.7 = 0.7.65 nginx 0.8 = 0.8.37 In vulnerable...

Nginx %00空字节执行任意代码(php)漏洞

Possible Arbitrary Code Execution with Null Bytes, PHP, and Old Versions of nginx Ngnix在遇到%00空字节时与后端FastCGI处理不一致，导致可以在图片中嵌入PHP代码然后通过访问xxx.jpg%00.php来执行其中的代码 In vulnerable versions of nginx, null bytes are allowed in URIs by default their presence is indicated via a variable named zeroinuri define...

CentOS Update for php CESA-2009:0337 centos3 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Nginx 0.7.65 Shell Upload

Exploit Title : Nginx Server Configuration hole ; Upload file execute Software link : http://nginx.org/ Version : Confirmed in nginx v0.7.65. And PHP v5.3.2 with Suhosin patch and extension. Tested on : windows 7 Date : 29/07/2011 Author : sysmox.com Website : http://www.sysmox.com Email :...

PHP 4.4.x<4.4.9, 5.2.x<5.2.7 FastCGI Module 多句点请求拒绝服务漏洞

No description provided by source...

Fedora 15 : maniadrive-1.2-29.fc15 / php-5.3.6-1.fc15 / php-eaccelerator-0.9.6.1-6.fc15 (2011-3614)

Security Enhancements and Fixes in PHP 5.3.6 : - Enforce security in the fastcgi protocol parsing with fpm SAPI. - Fixed bug 54247 format-string vulnerability on Phar. CVE-2011-1153 - Fixed bug 54193 Integer overflow in shmopread. CVE-2011-1092 - Fixed bug 54055 buffer overrun with high values fo...

PHP 5.3 < 5.3.6 Multiple Vulnerabilities

According to its banner, the version of PHP 5.3.x installed on the remote host is older than 5.3.6. - A NULL pointer can be dereferenced in the function 'zipnamelocate' when processing empty archives and can lead to application crashes or code execution. Exploitation requires the...

PHP 5.3 < 5.3.6 String To Double Conversion DoS

Binary data 801082.prm...