27 matches found
Format string
Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service daemon crash and possibly have unspecified other impact via format string specifiers in the encoding attribute of the XML declaratio...
CVE-2010-0388
Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service daemon crash and possibly have unspecified other impact via format string specifiers in the encoding attribute of the XML declaratio...
FreeBSD Ports: apache
The remote host is missing an update to the system as announced in the referenced advisory. VID e15f2356-9139-11de-8f42-001aa0166822 OpenVAS Vulnerability Test $ Description: Auto generated from VID e15f2356-9139-11de-8f42-001aa0166822 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
apr-util billion laughs attack
The expat XML parser in the aprxml interface in xml/aprxml.c in Apache APR-util before 1.3.7, as used in the moddav and moddavsvn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service memory consumption via a crafted XML document containing a large number of nest...
DEBIAN-CVE-2009-1955
The expat XML parser in the aprxml interface in xml/aprxml.c in Apache APR-util before 1.3.7, as used in the moddav and moddavsvn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service memory consumption via a crafted XML document containing a large number of nest...
IIS 5.0 PROPFIND DOS
Georgi Guninski security advisory 38, 2001 IIS 5.0 PROPFIND DOS Systems affected: IIS 5.0 Risk: Medium but may turn more serious Date: 8 March 2001 Legal Notice: This Advisory is Copyright c 2001 Georgi Guninski. You may distribute it unmodified. You may not modify it and distribute it or...
Microsoft IIS WebDAV Malformed PROPFIND Request Remote DoS
It was possible to disable the remote IIS server by making a specially formed PROPFIND request. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. This security check is heavily based on Georgi Guninski's post on the bugtraq mailing list include'deprecatednasllevel.inc'; include'compat.inc'; if...