Apache 2.4 Comes Out, Major update after 6 years

Apache 2.4 Comes Out, Major update after 6 years The Apache Software Foundation officially released the Apache 2.4 today as the first major update to this leading open-source web-server in more than a half-decade. Apache 2.4 is slated to deliver superior performance to its 2.2 predecessor and...

VUL-0: nginx: heap overflow (important)

A flaw in the custom DNS resolver of nginx could lead to a heap based buffer overflow which could potentially allow attackers to execute arbitrary code or to cause a Denial of Service bnc731084, CVE-2011-4315...

nginx fastcgi configuration mistakes+parsing vulnerability-induced vulnerability-vulnerability warning-the black bar safety net

Now there are many sites with nginx, since the N months before the nginx parsing vulnerability since now almost all fixed, the General statement is written so if $fastcgiscriptname ../. php return 4 0 3; When matching/. phpwhen it returns 4 0 3 但是 有些 fastcgi 配置 的 却 不只 有 .php and some are even...

IIS7. 0 website, the exploit and the Fix-vulnerability warning-the black bar safety net

To the currently popular PHP as an example: To merge a PHP word pictures of horses, the combined method: ① , DOS merge: copy 1.gif /b + 1. txt/a php.gif ② , With edjpgcom, make picture and word Trojan of the merger, remark Code of? php eval$POSTmeckun;?& gt; Pictures just to find one...

nginx 配置错误而导致目录遍历漏洞

nginx是一款高性能的web服务器，使用非常广泛，其不仅经常被用作反向代理 在nginx中开启autoindex，配置不规范而造成目录遍历漏洞 配置如下： codeserver listen 80; servername sebug.net; index index.htm index.html; root /home/wwwroot/www; accesslog off; location /paper alias /home/wwwroot/paper/; autoindex on; /code 注意 这里/home/wwwroot/paper/; 有个/...

Medium: nginx

Issue Overview: Heap-based buffer overflow in compression-pointer processing in core/ngxresolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service daemon crash or possibly have unspecified other impact via a long response. Affected Packages: nginx Issue Correction: Run...

Fedora Update for nginx FEDORA-2011-16110

Check for the Version of nginx OpenVAS Vulnerability Test Fedora Update for nginx FEDORA-2011-16110 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

Fedora Update for nginx FEDORA-2011-16110

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2011-4315

Heap-based buffer overflow in compression-pointer processing in core/ngxresolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service daemon crash or possibly have unspecified other impact via a long response...

CVE-2011-4315

Heap-based buffer overflow in compression-pointer processing in core/ngxresolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service daemon crash or possibly have unspecified other impact via a long response...

DEBIAN-CVE-2011-4315

Heap-based buffer overflow in compression-pointer processing in core/ngxresolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service daemon crash or possibly have unspecified other impact via a long response...

CVE-2011-4315

Heap-based buffer overflow in compression-pointer processing in core/ngxresolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service daemon crash or possibly have unspecified other impact via a long response...

Heap overflow

Heap-based buffer overflow in compression-pointer processing in core/ngxresolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service daemon crash or possibly have unspecified other impact via a long response...

CVE-2011-4315

CVE-2011-4315 describes a heap-based buffer overflow in nginx’s DNS resolver path (core/ngx_resolver.c) that can be triggered by compression-pointer processing. Affected: nginx versions prior to 1.0.10. Impact stated across sources: remote resolvers may cause a denial of service (daemon crash) an...

CVE-2011-4315

Heap-based buffer overflow in compression-pointer processing in core/ngxresolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service daemon crash or possibly have unspecified other impact via a long response...

CVE-2011-4315

Heap-based buffer overflow in compression-pointer processing in core/ngxresolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service daemon crash or possibly have unspecified other impact via a long response...

[SECURITY] Fedora 15 Update: nginx-1.0.10-1.fc15

Nginx engine x is an HTTPS server, HTTPS reverse proxy and IMAP/POP3 proxy server written by Igor Sysoev...

[SECURITY] Fedora 16 Update: nginx-1.0.10-1.fc16

Nginx engine x is an HTTPS server, HTTPS reverse proxy and IMAP/POP3 proxy server written by Igor Sysoev...

Fedora 15 : nginx-1.0.10-1.fc15 (2011-16110)

fix for CVE-2011-4315 nginx: heap overflow in ngxresolvercopy Update to latest stable version Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

Fedora 16 : nginx-1.0.10-1.fc16 (2011-16075)

fix for CVE-2011-4315 nginx: heap overflow in ngxresolvercopy Update to latest stable version Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...