RHEL 6 : apr-util (RHSA-2010:0950)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2010:0950 advisory. The Apache Portable Runtime APR is a portability library used by the Apache HTTP Server and other projects. apr-util is a library which provides...

php security update

CentOS Errata and Security Advisory CESA-2010:0919 Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS...

RHEL 4 / 5 : php (RHSA-2010:0919)

Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, a...

Moderate: Red Hat Security Advisory: php security update

Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, a...

CVE-2010-3872

A flaw was found in the modfcgid module of httpd. A malformed FastCGI response may result in a stack-based buffer overflow in the modules/fcgid/fcgidbucket.c file in the fcgidheaderbucketread function, resulting in an application crash...

CVE-2010-3872

A flaw was found in the modfcgid module of httpd. A malformed FastCGI response may result in a stack-based buffer overflow in the modules/fcgid/fcgidbucket.c file in the fcgidheaderbucketread function, resulting in an application crash...

Stack overflow

A flaw was found in the modfcgid module of httpd. A malformed FastCGI response may result in a stack-based buffer overflow in the modules/fcgid/fcgidbucket.c file in the fcgidheaderbucketread function, resulting in an application crash...

CVE-2010-3872

The CVE-2010-3872 issue affects Apache mod_fcgid. A flaw in fcgid_header_bucket_read() (fcgid_bucket.c) could trigger a stack-based buffer overflow from malformed FastCGI responses, potentially crashing the server or allowing arbitrary code execution with the server’s privileges. Public sources i...

CVE-2010-3872 Httpd: mod_fcgid: stack-based buffer overflow in fcgid_header_bucket_read() in modules/fcgid/fcgid_bucket.c

A flaw was found in the modfcgid module of httpd. A malformed FastCGI response may result in a stack-based buffer overflow in the modules/fcgid/fcgidbucket.c file in the fcgidheaderbucketread function, resulting in an application crash...

CVE-2010-3872

A flaw was found in the modfcgid module of httpd. A malformed FastCGI response may result in a stack-based buffer overflow in the modules/fcgid/fcgidbucket.c file in the fcgidheaderbucketread function, resulting in an application crash...

KLA10066 Multiple vulnerabilities in Apache httpd

Multiple serious vulnerabilities have been found in Apache httpd. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, inject code or execute arbitrary code. Below is a complete list of vulnerabilities 1. Multiple integer overflow...

Debian DSA-2117-1 : apr-util - denial of service

APR-util is part of the Apache Portable Runtime library which is used by projects such as Apache httpd and Subversion. Jeff Trawick discovered a flaw in the aprbrigadesplitline function in apr-util. A remote attacker could send crafted http requests to cause a greatly increased memory consumption...

Alcatel-Lucent OmniPCX Enterprise - masterCGI Arbitrary Command Execution (Metasploit)

$Id: alcatelomnipcxmastercgiexec.rb 10556 2010-10-05 23:13:04Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

[SECURITY] [DSA-2117-1] New apr-util packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-2117-1 [email protected] http://www.debian.org/security/ Stefan Fritsch October 4, 2010 http://www.debian.org/security/faq -...

[SECURITY] [DSA-2117-1] New apr-util packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-2117-1 [email protected] http://www.debian.org/security/ Stefan Fritsch October 4, 2010 http://www.debian.org/security/faq -...

DSA-2117-1 apr-util - denial of service

Bulletin has no description...

RedHat Update for httpd RHSA-2010:0659-01

Check for the Version of httpd OpenVAS Vulnerability Test RedHat Update for httpd RHSA-2010:0659-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

weborf 0.12.2 - Directory Traversal

Title: Weborf httpd = 0.12.2 Directory Traversal Vulnerability Date: Sep 6, 2010 Author: Rew Link: http://galileo.dmi.unict.it/wiki/weborf/doku.php Version: 0.12.2 Tested On: Debian 5 CVE: N/A ============================================================= Weborf httpd = 0.12.2 suffers a directory...

Weborf <= 0.12.2 Directory Traversal Vulnerability

Exploit for windows platform in category remote exploits ================================================== Weborf = 0.12.2 Directory Traversal Vulnerability ================================================== Title: Weborf httpd = 0.12.2 Directory Traversal Vulnerability Date: Sep 6, 2010 Author:...

RedHat Update for httpd RHSA-2010:0659-01

Check for the Version of httpd OpenVAS Vulnerability Test RedHat Update for httpd RHSA-2010:0659-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...