34 matches found
Photon OS 2.0: Apache PHSA-2021-2.0-0308
An update of the apache package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-2.0-0308. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid14489...
Photon OS 3.0: Apache PHSA-2020-3.0-0180
An update of the apache package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0180. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid144516;...
Photon OS 1.0: Apache PHSA-2020-1.0-0338
An update of the apache package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-1.0-0338. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid14306...
USN-2625-1: Apache HTTP Server update
As a security improvement, this update makes the following changes to the Apache package in Ubuntu 12.04 LTS: Added support for ECC keys and ECDH ciphers. The SSLProtocol configuration directive now allows specifying the TLSv1.1 and TLSv1.2 protocols. Ephemeral key handling has been improved,...
MGASA-2014-0304 Updated apache package fixes security vulnerabilities
A race condition flaw, leading to heap-based buffer overflows, was found in the modstatus httpd module. A remote attacker able to access a status page served by modstatus on a server using a threaded Multi-Processing Module MPM could send a specially crafted request that would cause the httpd chi...
Debian Linux 2.1 httpd Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/318/info The Debian GNU/Linux 2.1 apache package by default allows anyone to view /usr/doc via the web, remotely. This is because srm.conf is preconfigured with the line: Alias /doc/ /usr/doc/ Boa is also preconfigured th...
CVE-2012-0216
The default configuration of the apache2 package in Debian GNU/Linux squeeze before 2.2.16-6+squeeze7, wheezy before 2.2.22-4, and sid before 2.2.22-4, when modphp or modrivet is used, provides example scripts under the doc/ URI, which might allow local users to conduct cross-site scripting XSS...
CVE-2003-1573
The PointBase 4.6 database component in the J2EE 1.4 reference implementation J2EE/RI allows remote attackers to execute arbitrary programs, conduct a denial of service, and obtain sensitive information via a crafted SQL statement, related to "inadequate security settings and library bugs in sun...
Debian: Security Advisory (DSA-803-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-067-1 : apache - Remote exploit
We have received reports that the apache' package, as included in the Debian stable' distribution, is vulnerable to the artificially long slash path directory listing vulnerability' as described on SecurityFocus. This vulnerability was announced to bugtraq by Dan Harkless. Quoting the SecurityFoc...
[SECURITY] [DSA 188-1] New Apache-SSL packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 188-1 [email protected] http://www.debian.org/security/ Martin Schulze November 5th, 2002 http://www.debian.org/security/faq -...
[SECURITY] [DSA 187-1] New Apache packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 187-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2002 http://www.debian.org/security/faq -...
Debian 2.1 - HTTPd
Debian 2.1 - HTTPd source: https://www.securityfocus.com/bid/318/info The Debian GNU/Linux 2.1 apache package by default allows anyone to view /usr/doc via the web, remotely. This is because srm.conf is preconfigured with the line: Alias /doc/ /usr/doc/ Boa is also preconfigured this way. lynx...
Debian 2.1 - HTTPd
source: https://www.securityfocus.com/bid/318/info The Debian GNU/Linux 2.1 apache package by default allows anyone to view /usr/doc via the web, remotely. This is because srm.conf is preconfigured with the line: Alias /doc/ /usr/doc/ Boa is also preconfigured this way. lynx http://some.host/doc...