5876 matches found
CVE-2015-0228
The luawebsocketread function in luarequest.c in the modlua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service child-process crash by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function...
RedHat Update for httpd RHSA-2015:0325-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
httpd: NULL pointer dereference in mod_cache if Content-Type has empty value
A NULL pointer dereference flaw was found in the way the modcache httpd module handled Content-Type headers. A malicious HTTP server could cause the httpd child process to crash when the Apache HTTP server was configured to proxy to a server with caching enabled...
httpd: bypass of mod_headers rules via chunked requests
A flaw was found in the way httpd handled HTTP Trailer headers when processing requests using chunked encoding. A malicious client could use Trailer headers to set additional HTTP headers after header processing was performed by other modules. This could, for example, lead to a bypass of header...
[SECURITY] Fedora 20 Update: httpd-2.4.10-2.fc20
The Apache HTTP Server is a powerful, efficient, and extensible web server...
Apache HTTP Server 2.3.x Version Detection
Binary data 8946.prm...
Apache HTTP Server 2.4.x Version Detection
Binary data 8947.prm...
Apache HTTP Server 2.0.x Version Detection
Binary data 8943.prm...
Apache HTTP Server 2.4.10 FastCGI DoS
Binary data 8938.prm...
Apache HTTP Server 1.x Version Detection
Binary data 8942.prm...
Apache HTTP Server 2.2.x Version Detection
Binary data 8945.prm...
Apache HTTP Server 2.1.x Version Detection
Binary data 8944.prm...
Apache HTTP Server 2.4 < 2.4.12 DoS
Binary data 8937.prm...
[SECURITY] Fedora 21 Update: php-5.6.6-1.fc21
PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...
CVE-2015-0228
The luawebsocketread function in luarequest.c in the modlua module in the Apache HTTP Server through 2.4.12 allows remote attackers to cause a denial of service child-process crash by sending a crafted WebSocket Ping frame after a Lua script has called the wsupgrade function...
Amazon Linux AMI : httpd24 (ALAS-2015-483)
modlua.c in the modlua module in the Apache HTTP Server 2.3.x and 2.4.x through 2.4.10 does not support an httpd configuration in which the same Lua authorization provider is used with different arguments within different contexts, which allows remote attackers to bypass intended access...
Low: httpd24
Issue Overview: modlua.c in the modlua module in the Apache HTTP Server 2.3.x and 2.4.x through 2.4.10 does not support an httpd configuration in which the same Lua authorization provider is used with different arguments within different contexts, which allows remote attackers to bypass intended...
CentOS Update for mod_dav_svn CESA-2015:0165 centos6
Check the version of moddavsvn SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882117";...
CentOS 7 : subversion (CESA-2015:0166)
Updated subversion packages that fix three security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available...
CentOS 6 : subversion (CESA-2015:0165)
Updated subversion packages that fix two security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available f...