PT-2025-25192 · Apache · Apache Web Server

Name of the Vulnerable Software and Affected Versions: Apache Web Server affected versions not specified Description: The issue concerns unvalidated user input. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue...

Apache 2.0.x < 2.0.49 mod_ssl Plain HTTP Request DoS

The remote host appears to be running a version of Apache 2.0.x prior to 2.0.49. It is, therefore, affected by a denial of service vulnerability in the 'modssl' module. An attacker can exploit this to deny service to the Apache server. C Tenable Network Security, Inc. include"compat.inc"; if...

Apache Web Server 2.0.x - MS-DOS Device Name Denial of Service

Apache Web Server 2.0.x - MS-DOS Device Name Denial of Service source: https://www.securityfocus.com/bid/6662/info A vulnerability has been reported in Apache Web server for Microsoft Windows. The vulnerability exists in the way some HTTP requests are handled by the Apache Web server. Specificall...

Apache Web Server ap_log_rerror() function discloses full path to CGI script

Overview There is a vulnerability in Apache 2.0 through 2.035 that could disclose the real path to a CGI script or other file. Description A vulnerability in the Apache web server could disclose sensitive information. Quoting from the Apache Change Log: Security Added the APLOGTOCLIENT flag to...

Advisory CA-2002-17 Apache Web Server Chunk Handling Vulnerability

CERT Advisory CA-2002-17 Apache Web Server Chunk Handling Vulnerability Original release date: June 17, 2002 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected Web servers based on Apache code versions 1.3 through 1.3.24 Web servers...