RedHat Security Advisory RHSA-2009:1205

The remote host is missing updates announced in advisory RHSA-2009:1205. The Apache HTTP Server is a popular Web server. The httpd package shipped with Red Hat Enterprise Linux 3 contains embedded copies of the Apache Portable Runtime APR libraries, which provide a free library of C data structur...

Mandrake Security Advisory MDVSA-2009:183 (apache-mod_security)

The remote host is missing an update to apache-modsecurity announced via advisory MDVSA-2009:183. OpenVAS Vulnerability Test $Id: mdksa2009183.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:183 apache-modsecurity Authors: Thomas Reinke Copyright:...

RedHat Security Advisory RHSA-2009:1205

The remote host is missing updates announced in advisory RHSA-2009:1205. The Apache HTTP Server is a popular Web server. The httpd package shipped with Red Hat Enterprise Linux 3 contains embedded copies of the Apache Portable Runtime APR libraries, which provide a free library of C data structur...

Mandrake Security Advisory MDVSA-2009:183 (apache-mod_security)

The remote host is missing an update to apache-modsecurity announced via advisory MDVSA-2009:183. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

CentOS 3 : httpd (CESA-2009:1205)

Updated httpd packages that fix multiple security issues and a bug are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. The httpd package shipped with...

Moderate: Red Hat Security Advisory: httpd security and bug fix update

Updated httpd packages that fix multiple security issues and a bug are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. The httpd package shipped with...

Moderate: Red Hat Security Advisory: apr and apr-util security update

Updated apr and apr-util packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache Portable Runtime APR is a portability library used by the...

Mandriva Linux Security Advisory : apache-mod_auth_mysql (MDVSA-2009:189-1)

A vulnerability has been found and corrected in modauthmysql : SQL injection vulnerability in modauthmysql.c in the mod-auth-mysql aka libapache2-mod-auth-mysql module for the Apache HTTP Server 2.x allows remote attackers to execute arbitrary SQL commands via multibyte character encodings for...

Apache HTTP Server HTTP-Basic认证绕过漏洞

Bugraq ID: 35840 CNCAN ID：CNCAN-2009072903 Apache HTTP Server是一款流行的WEB服务程序。 Apache HTTP Server存在HTTP-Basic认证绕过问题，远程攻击者可以利用漏洞访问受资源，获得敏感信息。 当用户要访问需要认证的资源时Apache HTTP Server会返回"401 Authorization Required"消息，也会包含提示需要哪种认证机制的HTTP消息，"Basic"认证是最通用的一种，基于BASE64编码的字符串：username:password，如果凭据正确，WEB服务器将返回"200...

RedHat Security Advisory RHSA-2009:1148

The remote host is missing updates announced in advisory RHSA-2009:1148. The Apache HTTP Server is a popular Web server. A denial of service flaw was found in the Apache modproxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume...

RedHat Security Advisory RHSA-2009:1156

The remote host is missing updates announced in advisory RHSA-2009:1156. The Apache HTTP Server is a popular Web server. A denial of service flaw was found in the Apache modproxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume...

apr-util billion laughs attack

The expat XML parser in the aprxml interface in xml/aprxml.c in Apache APR-util before 1.3.7, as used in the moddav and moddavsvn modules in the Apache HTTP Server, allows remote attackers to cause a denial of service memory consumption via a crafted XML document containing a large number of nest...

Important: Red Hat Security Advisory: httpd22 security update

Updated httpd22 packages that fix multiple security issues are now available for JBoss Enterprise Web Server 1.0.0 for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server...

Apache 'mod_deflate' Denial Of Service Vulnerability - July09

This host is running Apache HTTP Server and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: gbapachemoddeflatedosvulnjul09.nasl 7176 2017-09-18 12:01:01Z cfischer $ Apache 'moddeflate' Denial Of Service Vulnerability - July09 Authors: Sharath S Copyright: Copyright c...

Apache HTTP Server 'mod_deflate' Denial Of Service Vulnerability (Jul 2009)

Apache HTTP Server is prone to a Denial of Service vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Important: Red Hat Security Advisory: httpd security update

Updated httpd packages that fix multiple security issues are now available for Red Hat Application Stack v2. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A denial of service flaw was found in...

Important: Red Hat Security Advisory: httpd security update

Updated httpd packages that fix multiple security issues are now available for JBoss Enterprise Web Server 1.0.0 for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A...

httpd, mod_ssl security update

CentOS Errata and Security Advisory CESA-2009:1148 Updated httpd packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web...

Apache mod_proxy反向代理拒绝服务漏洞

BUGTRAQ ID: 35565 CVECAN ID: CVE-2009-1890 Apache HTTP Server是一款流行的Web服务器。 如果配置了反向代理的话，在Apache HTTP Server的modproxy模块中，modproxyhttp.c的streamreqbodycl函数没有正确地处理数量超过了 Content-Length值的流数据。远程攻击者可以通过向受影响的代理进程发送特制的请求导致耗尽大量的CPU资源。 Apache 2.2.x 厂商补丁： Apache Group ------------...

Apache 'mod_proxy_http.c' Denial Of Service Vulnerability

This host is running Apache HTTP Server and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: gbapachemodproxydosvuln.nasl 7176 2017-09-18 12:01:01Z cfischer $ Apache 'modproxyhttp.c' Denial Of Service Vulnerability Authors: Sharath S Copyright: Copyright c 2009 Greenbo...