CVE-2004-0748

modssl in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service CPU consumption by aborting an SSL connection in a way that causes an Apache child process to enter an infinite loop...

CVE-2004-0747

Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables...

Apache HTTP Server contains a buffer overflow in the mod_proxy module

Overview Apache Web Server contains a buffer overflow vulnerability in the modproxy module that may allow a remote attacker to execute arbitrary code or launch a denial of service DoS attack. Description The Apache Server is an open-source web server offered by The Apache Software Foundation. The...

Debian DSA-452-1 : libapache-mod-python - denial of service

The Apache Software Foundation announced that some versions of modpython contain a bug which, when processing a request with a malformed query string, could cause the corresponding Apache child to crash. This bug could be exploited by a remote attacker to cause a denial of service. %NASLMINLEVEL...

apache mod_ssl memory leak

No description provided...

[SECURITY] [DSA 452-1] New libapache-mod-python packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 452-1 [email protected] http://www.debian.org/security/ Matt Zimmerman February 29th, 2004 http://www.debian.org/security/faq -...

DSA-452 libapache-mod-python - denial of service

Bulletin has no description...

apache local protection bypass

It's possible to bypass few security settings with ErrorDocument...

Apache local buffer overflow

Buffer overflow on parsing regular expressions in .htaccess...

CVE-2003-0254

Apache 2 before 2.0.47, when running on an IPv6 host, allows attackers to cause a denial of service CPU consumption by infinite loop when the FTP proxy server fails to create an IPv6 socket...

CVE-2003-0253

The prefork MPM in Apache 2 before 2.0.47 does not properly handle certain errors from accept, which could lead to a denial of service...

[ANNOUNCE] Apache 2.0.45 Released

-----BEGIN PGP SIGNED MESSAGE----- Apache 2.0.45 Released The Apache Software Foundation and The Apache HTTP Server Project are pleased to announce the eighth public release of the Apache 2.0 HTTP Server. This Announcement notes the significant changes in 2.0.45 as compared to 2.0.44. OS2 users;...

CVE-2002-0654

Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote attackers to determine the full pathname of the server via 1 a request for a .var file, which leaks the pathname in the resulting error message, or 2 via an error message that occurs when a script child process cannot be invoked...

CVE-2002-0392

Apache 1.3 through 1.3.24, and Apache 2.0 through 2.0.36, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a chunk-encoded HTTP request that causes Apache to use an incorrect size...

tomcat-3.1.path.txt

LoWNOISE Tomcat 3.1 Path Revealing Problem. ====PRODUCT: Release Build 3.1 of Tomcat from Apache Software Foundation. Tomcat is the combined JSP 1.1 and Servlets 2.2 reference implementation being developed under the Apache process. http://jakarta.apache.org ====PROBLEM: Path Revealing Problem0...