5763 matches found
[USN-2523-1] Apache HTTP Server vulnerabilities
========================================================================== Ubuntu Security Notice USN-2523-1 March 10, 2015 apache2 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
Apache HTTP Server Denial of Service Vulnerability (CNVD-2015-01691)
Apache HTTP Server is an open source web server from the Apache Software Foundation that runs on most computer operating systems and is widely used as one of the most popular web server-side software due to its multi-platform and security. A denial-of-service vulnerability exists in Apache HTTP...
Ubuntu 14.04 LTS : Apache HTTP Server vulnerabilities (USN-2523-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2523-1 advisory. Martin Holst Swende discovered that the modheaders module allowed HTTP trailers to replace HTTP headers during request processing. A remote attacker coul...
USN-2523-1: Apache HTTP Server vulnerabilities
Martin Holst Swende discovered that the modheaders module allowed HTTP trailers to replace HTTP headers during request processing. A remote attacker could possibly use this issue to bypass RequestHeaders directives. CVE-2013-5704 Mark Montague discovered that the modcache module incorrectly handl...
CVE-2015-0228
The luawebsocketread function in luarequest.c in the modlua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service child-process crash by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function...
DEBIAN-CVE-2015-0228
The luawebsocketread function in luarequest.c in the modlua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service child-process crash by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function...
CVE-2015-0228
The luawebsocketread function in luarequest.c in the modlua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service child-process crash by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function...
RedHat Update for httpd RHSA-2015:0325-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
httpd: bypass of mod_headers rules via chunked requests
A flaw was found in the way httpd handled HTTP Trailer headers when processing requests using chunked encoding. A malicious client could use Trailer headers to set additional HTTP headers after header processing was performed by other modules. This could, for example, lead to a bypass of header...
httpd: NULL pointer dereference in mod_cache if Content-Type has empty value
A NULL pointer dereference flaw was found in the way the modcache httpd module handled Content-Type headers. A malicious HTTP server could cause the httpd child process to crash when the Apache HTTP server was configured to proxy to a server with caching enabled...
[SECURITY] Fedora 20 Update: httpd-2.4.10-2.fc20
The Apache HTTP Server is a powerful, efficient, and extensible web server...
Apache HTTP Server 2.4.x Version Detection
Binary data 8947.prm...
Apache HTTP Server 2.1.x Version Detection
Binary data 8944.prm...
Apache HTTP Server 1.x Version Detection
Binary data 8942.prm...
Apache HTTP Server 2.0.x Version Detection
Binary data 8943.prm...
Apache HTTP Server 2.4 < 2.4.12 DoS
Binary data 8937.prm...
Apache HTTP Server 2.4.10 FastCGI DoS
Binary data 8938.prm...
Apache HTTP Server 2.2.x Version Detection
Binary data 8945.prm...
Apache HTTP Server 2.3.x Version Detection
Binary data 8946.prm...
[SECURITY] Fedora 21 Update: php-5.6.6-1.fc21
PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...