Linksys WAG54G v2 Wireless ADSL Router - HTTPd Denial of Service

Linksys WAG54G v2 Wireless ADSL Router - HTTPd Denial of Service nmap 192.168.1.1 Starting Nmap 4.20 http://insecure.org at 2008-12-12 12:17 EST Interesting ports on 192.168.1.1: Not shown: 1695 closed ports PORT STATE SERVICE 23/tcp open telnet 443/tcp open https Nmap finished: 1 IP address 1 ho...

RHEL 3 / 4 / 5 : httpd (RHSA-2008:0967)

Updated httpd packages that resolve several security issues and fix a bug are now available for Red Hat Enterprise Linux 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A flaw was foun...

httpd security and bug fix update

2.2.3-11.0.1.el52.4 - use oracle index page oracleindex.html - update vstring and distro in specfile 2.2.3-11.el52.4 - add security fixes for CVE-2008-2364, CVE-2008-2939 468840...

auth-owners NSE Script

Attempts to find the owner of an open TCP port by querying an auth daemon which must also be open on the target system. The auth service, also known as identd, normally runs on port 113. Example Usage nmap -sV -sC Script Output 21/tcp open ftp ProFTPD 1.3.1 | auth-owners: nobody 22/tcp open ssh...

Abyss httpd crash

It was possible to kill the web server by sending empty HTTP fields namely Connection: and Range:. SPDX-FileCopyrightText: 2008 Renaud Deraison Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Samsung DVR SHR-2040 HTTPD拒绝服务漏洞

BUGTRAQ ID: 31047 CNCAN ID：CNCAN-2008090908 Samsung DVR SHR-2040是一款用于对TV广播，有线电视等传送进行记录的mini-PC。 Samsung DVR SHR-2040 WEB接口不正确处理HTTP请求，远程攻击者可以利用漏洞对设备进行拒绝服务攻击。 用于配置的CGIS文件过滤器存在未明错误，发送特殊构建的HTTP请求可导致应用程序崩溃。 Samsung SHR-2040 目前没有解决方案提供： http://www.samsung.com/ !/usr/bin/perl -w Samsung DVR SHR2040 HTT...

Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC

No description provided by source. !/usr/bin/perl -w Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC The vulnerability is caused due to an unspecified error in the cgis files filter used for configure propierties. This can be exploited by sending a specially crafted HTTP request NO...

Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC

Exploit for hardware platform in category dos / poc ========================================================== Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC ========================================================== !/usr/bin/perl -w Samsung DVR SHR2040 HTTPD Remote Denial of Service...

Fedora 9 : httpd-2.2.9-1.fc9 (2008-6393)

This update includes the latest release of httpd 2.2. Two security issues are fixed in this update: A flaw was found in the handling of excessive interim responses from an origin server when using modproxyhttp. In a forward proxy configuration, if a user of the proxy could be tricked into visitin...

Fedora 8 : httpd-2.2.9-1.fc8 (2008-6314)

This update includes the latest release of httpd 2.2. A security issue is fixed in this update: A flaw was found in the handling of excessive interim responses from an origin server when using modproxyhttp. In a forward proxy configuration, if a user of the proxy could be tricked into visiting a...

[SECURITY] Fedora 9 Update: httpd-2.2.9-1.fc9

The Apache HTTP Server is a powerful, efficient, and extensible web server...

[slackware-security] httpd

New httpd packages are available for Slackware 12.0, 12.1, and -current to fix XSS security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-5000 https://vulners.com/cve/CVE-2007-6388 Here are the details...

Slackware 12.0 / 12.1 / current : httpd (SSA:2008-210-02)

New httpd packages are available for Slackware 12.0, 12.1, and -current to fix XSS security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2008-210-02. The text itself is copyright...

Apache Httpd < 2.0.64 : mod_proxy_ftp globbing XSS

A flaw was found in the handling of wildcards in the path of a FTP URL with modproxyftp. If modproxyftp is enabled to support FTP-over-HTTP, requests containing globbing characters could lead to cross-site scripting XSS attacks...

Apache Httpd < 2.2.10 : mod_proxy_ftp globbing XSS

A flaw was found in the handling of wildcards in the path of a FTP URL with modproxyftp. If modproxyftp is enabled to support FTP-over-HTTP, requests containing globbing characters could lead to cross-site scripting XSS attacks...

Apache &lt;= 1.3.31 mod_include Local Buffer Overflow Exploit

No description provided by source. / local exploit for modinclude of apache 1.3.x written by xCrZx /18.10.2004/ bug found by xCrZx /18.10.2004/ Successfully tested on apache 1.3.31 under Linux RH9.0Shrike / / Technical Details: there is an overflow in gettag function: static char gettagpool p, FI...

Apache &lt;= 2.0.49 Arbitrary Long HTTP Headers Denial of Service

No description provided by source. /usr/bin/perl -w use IO::Socket::INET; usage unless @ARGV == 2; my $host = shift@ARGV; my $port = shift@ARGV; sub usage print "\n"; print "\n Apache HTTPd Arbitrary Long HTTP Headers DoS \n"; print " Tested Versions : 2 2.0.49 \n"; print " Adv :...

Apache HTTPd Arbitrary Long HTTP Headers DoS

No description provided by source. /usr/bin/perl exploit for apache apgetmimeheaderscore vuln adv is here: http://www.guninski.com/httpd1.html version: apache 2 2.0.49 apache 1 not tested. by bkbll bkbllcnhonker.net http://www.cnhonker.com tail -f /var/log/messages...

Moderate: Red Hat Security Advisory: Red Hat Application Stack v2.1 security and enhancement update

Red Hat Application Stack v2.1 is now available. This update fixes various security issues and adds several enhancements. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Red Hat Application Stack is an integrated open source application...

Low: Red Hat Security Advisory: Red Hat Network Satellite Server security update

Red Hat Network Satellite Server version 4.2.3 is now available. This update includes fixes for a number of security issues in Red Hat Network Satellite Server components. This update has been rated as having low security impact by the Red Hat Security Response Team. This release corrects several...