Lucene search
K

81 matches found

Tenable Nessus
Tenable Nessus
added 2004/07/12 12:0 a.m.39 views

Solaris 9 (x86) : 114145-12

SunOS 5.9x86: Apache Security Patch. Date this patch was last updated by Sun : Mar/05/10 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if descriptio...

10CVSS9.1AI score0.33639EPSS
Exploits7References8
securityvulns
securityvulns
added 2004/03/26 12:0 a.m.28 views

Multiple Apache vulnerabilities

modssl memory leak, logfile terminal escape sequences injection...

1.9AI score
Exploits0References1Affected Software1
OSV
OSV
added 2003/11/03 5:0 a.m.7 views

CVE-2003-0542

Multiple stack-based buffer overflows in 1 modalias and 2 modrewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service crash or execute arbitrary code via a regular expression with more than 9 captures...

7.5AI score
Exploits0References55
Tenable Nessus
Tenable Nessus
added 2003/09/26 12:0 a.m.190 views

Apache 2.0.x < 2.0.48 Multiple Vulnerabilities (OF, Info Disc.)

The remote host appears to be running a version of Apache 2.0.x prior to 2.0.48. It is, therefore, affected by multiple vulnerabilities : - The modrewrite and modalias modules fail to handle regular expressions containing more than 9 captures resulting in a buffer overflow. - A vulnerability may...

10CVSS5.8AI score0.1273EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2003/07/18 12:0 a.m.52 views

Apache < 1.3.28 Multiple Vulnerabilities (DoS, ID)

The remote host appears to be running a version of Apache which is older than 1.3.28 There are several flaws in this version, including a denial of service in redirect handling, a denial of service with control character handling in the 'rotatelogs' utility and a file descriptor leak in third-par...

5CVSS5.6AI score0.13429EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2003/07/10 4:0 a.m.50 views

CVE-2003-0192

Apache 2 before 2.0.47, and certain versions of modssl for Apache 1.3, do not properly handle "certain sequences of per-directory renegotiations and the SSLCipherSuite directive being used to upgrade from a weak ciphersuite to a strong one," which could cause Apache to use the weak ciphersuite...

6.4CVSS6.2AI score0.05993EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/04/03 12:0 a.m.45 views

Apache 2.0.x < 2.0.45 Multiple Vulnerabilities (DoS, File Write)

The remote host is running a version of Apache 2.0.x that is prior to 2.0.45. It is, therefore, reportedly affected by multiple vulnerabilities : - There is a denial of service attack that could allow an attacker to disable this server remotely. - The httpd process leaks file descriptors to child...

5CVSS6AI score0.86677EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2003/03/28 1:43 p.m.10 views

Important: Red Hat Security Advisory: apache, openssl security update for Stronghold

Updated versions of cross-platform Stronghold 4 are available to fix a number of vulnerabilities in OpenSSL and Apache. Stronghold 4 contains various open source technologies such as OpenSSL and Apache. A number of issues have been found in versions of these projects: Researchers discovered a...

7.5CVSS7.3AI score0.17413EPSS
Exploits8References3
RedHat Linux
RedHat Linux
added 2003/03/18 11:1 a.m.14 views

Important: Red Hat Security Advisory: apache, openssl, php security update for Stronghold

Updated versions of Stronghold 3.0 are available to fix a number of vulnerabilities in OpenSSL, Apache, and PHP. Stronghold 3.0 contains a number of open source technologies such as OpenSSL, Apache, and PHP. The following paragraphs describe a number of issues that have been found in versions of...

7.5CVSS7.2AI score0.17413EPSS
Exploits8References2
RedHat Linux
RedHat Linux
added 2003/03/03 9:16 a.m.11 views

Important: Red Hat Security Advisory: apache, openssl, php, tomcat security update for Stronghold

Updated versions of Stronghold 4 cross-platform are available to fix a number of vulnerabilities in OpenSSL, Apache, PHP, and Tomcat. Also included in this update are bug fixes for modproxy and the modauthzldap package. Stronghold 4 cross platform contains a number of open source technologies suc...

7.5CVSS7AI score0.13718EPSS
Exploits7References4
Tenable Nessus
Tenable Nessus
added 2003/01/22 12:0 a.m.41 views

Apache < 2.0.44 DOS Device Name Multiple Remote Vulnerabilities (Code Exec, DoS)

The remote host appears to be running a version of Apache for Windows that is older than 2.0.44. There are several flaws in this version that allow an attacker to crash this host or even execute arbitrary code remotely, but it only affects WindowsME and Windows9x. Note that Nessus solely relied o...

7.5CVSS5.7AI score0.16008EPSS
Exploits0References2
Debian
Debian
added 2002/11/13 3:33 p.m.32 views

[SECURITY] [DSA 195-1] New Apache-Perl packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 195-1 [email protected] http://www.debian.org/security/ Martin Schulze November 13th, 2002 http://www.debian.org/security/faq -...

7.5CVSS0.6AI score0.94006EPSS
Exploits0
OSV
OSV
added 2002/11/13 12:0 a.m.26 views

DSA-195 apache-perl - several vulnerabilities

Bulletin has no description...

7.5CVSS9.3AI score0.94006EPSS
Exploits0
Debian
Debian
added 2002/11/04 3:26 p.m.29 views

[SECURITY] [DSA 187-1] New Apache packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 187-1 [email protected] http://www.debian.org/security/ Martin Schulze November 4th, 2002 http://www.debian.org/security/faq -...

9.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2002/10/04 12:0 a.m.138 views

Apache < 1.3.27 Multiple Vulnerabilities (DoS, XSS)

The remote host is running a version of Apache web server prior to 1.3.27. It is, therefore, affected by multiple vulnerabilities : - There is a cross-site scripting vulnerability caused by a failure to filter HTTP/1.1 'Host' headers that are sent by browsers. - A vulnerability in the handling of...

7.5CVSS5.6AI score0.94006EPSS
Exploits0References7
securityvulns
securityvulns
added 2002/10/04 12:0 a.m.39 views

Multiple bugs in Apache scoreboard

Any euid Apache process can DoS system by launching large number of child process and sending SIGUSR1 to any process as root. Buffer overflow in ab...

3.3AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2002/09/17 12:0 a.m.91 views

Apache mod_ssl OpenSSL &lt; 0.9.6d / &lt; 0.9.7-beta2 - &#039;openssl-too-open.c&#039; SSL2 KEY_ARG Overflow

/ openssl-too-open.c - OpenSSL remote exploit Spawns a nobody/apache shell on Apache, root on other servers. by Solar Eclipse Thanks to Core, HD Moore, Zillion, Dvorak and Black Berry for their help. This code or any derivative versions of it may not be posted to Bugtraq or anywhere on...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2001/12/08 12:0 a.m.34 views

Дырки в Apache &#40;information leakage, directory traversal&#41;

При создании .log-файла виртуального сервера не проверяется правильность заголовка Host, переданного клиентом, что позволяет создать лог файл в любом каталоге. В некоторых случаях возможно получить листинг каталога добавив /?M=D к запросу...

0.9AI score
Exploits0References2Affected Software2
securityvulns
securityvulns
added 2001/10/19 12:0 a.m.53 views

[CLA-2001:430] Conectiva Linux Security Announcement - apache

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- CONECTIVA LINUX SECURITY ANNOUNCEMENT - -------------------------------------------------------------------------- PACKAGE : apache SUMMARY : Remote vulnerabilities in Apache...

5CVSS6.5AI score0.56756EPSS
Exploits0
Cvelist
Cvelist
added 2001/02/14 5:0 a.m.42 views

CVE-2001-0131

htpasswd and htdigest in Apache 2.0a9, 1.3.14, and others allows local users to overwrite arbitrary files via a symlink attack...

6AI score0.02309EPSS
Exploits0References4
Rows per page
Query Builder