5747 matches found
CVE-2009-3250
The saveForwardAttachments procedure in the Compose Mail functionality in vtiger CRM 5.0.4 allows remote authenticated users to execute arbitrary code by composing an e-mail message with an attachment filename ending in 1 .php in installations based on certain Apache HTTP Server configurations, 2...
Design/Logic Flaw
The saveForwardAttachments procedure in the Compose Mail functionality in vtiger CRM 5.0.4 allows remote authenticated users to execute arbitrary code by composing an e-mail message with an attachment filename ending in 1 .php in installations based on certain Apache HTTP Server configurations, 2...
CVE-2009-3250
The CVE-2009-3250 issue affects vtiger CRM 5.0.4, where the saveForwardAttachments function in Compose Mail lets remote authenticated users execute arbitrary code by attaching a filename ending in .php (varying by Apache config/OS) and then requesting a path under storage/. The connected document...
Apache 'mod_proxy_ftp' Module Denial Of Service Vulnerability (Linux)
The host is running Apache and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodapachemodproxyftpdosvuln.nasl 5390 2017-02-21 18:39:27Z mime $ Apache 'modproxyftp' Module Denial Of Service Vulnerability Linux Authors: Sharath S Copyright: Copyright c 2009 SecPod,...
Apache 'mod_proxy_ftp' Module Command Injection Vulnerability (Linux)
The host is running Apache and is prone to Command Injection vulnerability. OpenVAS Vulnerability Test $Id: secpodapachemodproxyftpcmdinjvuln.nasl 5390 2017-02-21 18:39:27Z mime $ Apache 'modproxyftp' Module Command Injection Vulnerability Linux Authors: Sharath S Copyright: Copyright c 2009...
Apache HTTP Server 'mod_proxy_ftp' Module Command Injection Vulnerability
Apache HTTP Server is prone to a command injection vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Apache HTTP Server 'mod_proxy_ftp' Module DoS Vulnerability
Apache HTTP Server is prone to a Denial of Service vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2009-3094
The approxyftphandler function in modules/proxy/proxyftp.c in the modproxyftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service NULL pointer dereference and child process crash via a malformed reply to an EPSV command...
Null pointer dereference
The approxyftphandler function in modules/proxy/proxyftp.c in the modproxyftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service NULL pointer dereference and child process crash via a malformed reply to an EPSV command...
CVE-2009-3094
The approxyftphandler function in modules/proxy/proxyftp.c in the modproxyftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service NULL pointer dereference and child process crash via a malformed reply to an EPSV command...
CVE-2009-3095
The modproxyftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pa...
Authorization
The modproxyftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pa...
CVE-2009-3095
The modproxyftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pa...
CVE-2009-3094
The approxyftphandler function in modules/proxy/proxyftp.c in the modproxyftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service NULL pointer dereference and child process crash via a malformed reply to an EPSV command...
CVE-2009-3095
The modproxyftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pa...
CVE-2009-3094
The CVE-2009-3094 issue affects Apache HTTP Server’s mod_proxy_ftp (ap_proxy_ftp_handler in proxy modules) and is caused by insufficient input validation in responses to EPSV commands. This allowed remote FTP servers to trigger a NULL pointer dereference, crashing a child httpd process and causin...
CVE-2009-3095
The modproxyftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pa...
Fedora 11 : httpd-2.2.13-1.fc11 (2009-8812)
This update includes the latest release of the Apache HTTP Server, version 2.2.13, fixing several security issues: Fix a potential Denial-of-Service attack against moddeflate or other modules, by forcing the server to consume CPU time in compressing a large file after a client disconnects...
Fedora Core 11 FEDORA-2009-8812 (httpd)
The remote host is missing an update to httpd announced via advisory FEDORA-2009-8812. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Fedora Core 11 FEDORA-2009-8812 (httpd)
The remote host is missing an update to httpd announced via advisory FEDORA-2009-8812. OpenVAS Vulnerability Test $Id: fcore20098812.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8812 httpd Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...