CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

According to its banner, the version of Apache running on the remote host is 2.4.64. It is, therefore, affected by a bug which results in all "RewriteCond expr ..." tests evaluating as "true". Note that the scanner has not tested for these issues but has instead relied only on the application's...

6.3CVSS7.3AI score0.00924EPSS

Exploits0References3

OSV•added 2005/05/02 4:0 a.m.•4 views

CVE-2005-1344

Buffer overflow in htdigest in Apache 2.0.52 may allow attackers to execute arbitrary code via a long realm argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation of privileges, unless htdigest is...

8.1AI score

Exploits0References7

Tenable Nessus•added 2004/10/22 12:0 a.m.•34 views

GLSA-200410-21 : Apache 2, mod_ssl: Bypass of SSLCipherSuite directive

The remote host is affected by the vulnerability described in GLSA-200410-21 Apache 2, modssl: Bypass of SSLCipherSuite directive A flaw has been found in modssl where the 'SSLCipherSuite' directive could be bypassed in certain configurations if it is used in a directory or location context to...

7.5CVSS5.4AI score0.06144EPSS

Exploits0References3

Cvelist•added 2004/09/01 4:0 a.m.•28 views

CVE-2003-0020

Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences...

7.7AI score0.2626EPSS

Exploits8References38

Debian•added 2004/06/25 9:4 p.m.•34 views

[SECURITY] [DSA 525-1] New apache packages fix buffer overflow in mod_proxy

-------------------------------------------------------------------------- Debian Security Advisory DSA 525-1 [email protected] http://www.debian.org/security/ Matt Zimmerman June 24th, 2004 http://www.debian.org/security/faq -...

10CVSS7.8AI score0.23714EPSS

Exploits0

OSV•added 2004/03/20 5:0 a.m.•3 views

CVE-2004-1834

moddiskcache in Apache 2.0 through 2.0.49 stores client headers, including authentication information, on the hard disk, which could allow local users to gain sensitive information...

6.5AI score

Exploits0References29

Cvelist•added 2003/10/30 5:0 a.m.•16 views

CVE-2003-0789

modcgid in Apache before 2.0.48, when using a threaded MPM, does not properly handle CGI redirect paths, which could cause Apache to send the output of a CGI program to the wrong client...

7.3AI score0.08237EPSS

Exploits0References27

Debian CVE•added 2003/07/10 4:0 a.m.•25 views

CVE-2003-0253

The prefork MPM in Apache 2 before 2.0.47 does not properly handle certain errors from accept, which could lead to a denial of service...

5CVSS6.1AI score0.08196EPSS

Exploits0

NVD•added 2003/03/18 5:0 a.m.•24 views

CVE-2003-0020

5CVSS7.5AI score0.2626EPSS

Exploits8References38

OSV•added 2003/03/18 5:0 a.m.•7 views

CVE-2003-0020

6.4AI score

Exploits0References39

Cvelist•added 2001/10/12 4:0 a.m.•20 views

CVE-2001-0766

Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters...

9.4AI score0.11129EPSS

Exploits1References2