Lucene search
K

979 matches found

OpenVAS
OpenVAS
added 2009/05/02 12:0 a.m.57 views

Apache Web Server Linefeed Memory Allocation Denial Of Service Vulnerability

Apache 2.0 series webservers are prone to a denial-of-service condition. This issue occurs because of the way that Apache handles excessive amounts of consecutive linefeed characters. The server may allocate large amounts of memory, resulting in a denial of service. OpenVAS Vulnerability Test $Id...

5CVSS6.2AI score0.86677EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2009/04/07 12:0 a.m.3 views

PT-2009-3399 · Apache · Apache Http Server

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server with mod perl affected versions not specified Description: A cross-site scripting XSS issue exists in Status.pm in Apache::Status and Apache2::Status for the Apache HTTP Server. This occurs when the /perl-status page is...

2.6CVSS5AI score0.29638EPSS
Exploits3References22
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.22 views

Fedora Update for mod_perl FEDORA-2007-576

Check for the Version of modperl OpenVAS Vulnerability Test Fedora Update for modperl FEDORA-2007-576 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

4.3CVSS7.7AI score0.10111EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.54 views

Fedora Update for php FEDORA-2007-455

Check for the Version of php OpenVAS Vulnerability Test Fedora Update for php FEDORA-2007-455 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of th...

10CVSS0.1AI score0.18162EPSS
Exploits4References2
RedHat Linux
RedHat Linux
added 2008/12/04 3:41 p.m.7 views

httpd: mod_proxy_http DoS via excessive interim responses from the origin server

A flaw was found in the modproxy module. An attacker who has control of a web server to which requests are being proxied could cause a limited denial of service due to CPU consumption and stack exhaustion. CVE-2008-2364...

5CVSS7AI score0.12714EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2008/06/30 3:33 p.m.5 views

mod_autoindex XSS

Cross-site scripting XSS vulnerability in modautoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it could be argued that th...

6.1CVSS7.3AI score0.26188EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2008/06/30 3:29 p.m.5 views

httpd scoreboard lack of PID protection

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the workerscore and processscore arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer."...

4.7CVSS7.3AI score0.03298EPSS
Exploits2References4
OSV
OSV
added 2008/06/13 6:41 p.m.1 views

DEBIAN-CVE-2008-2364

The approxyhttpprocessresponse function in modproxyhttp.c in the modproxy module in the Apache HTTP Server 2.0.63 and 2.2.8 does not limit the number of forwarded interim responses, which allows remote HTTP servers to cause a denial of service memory consumption via a large number of interim...

5CVSS8.8AI score0.12714EPSS
Exploits2References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/05/20 3:0 p.m.2 views

Cross-site scripting vulnerability in Apache HTTP Server "mod_imap" and "mod_imagemap"

Overview modimap and modimagemap modules of the Apache HTTP Server are vulnerable to cross-site scripting. The Apache HTTP Server is open source web server software. The Apache HTTP Server modules modimap and modimagemap provide server-side imagemap processing capability. The Apache HTTP Server...

4.3CVSS7.4AI score0.46603EPSS
Exploits1References42
RedHat Linux
RedHat Linux
added 2008/01/21 9:36 a.m.2 views

httpd mod_proxy_balancer cross-site scripting

Cross-site scripting XSS vulnerability in balancer-manager in modproxybalancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the 1 ss, 2 wr, or 3 rr parameters, or 4 the URL...

3.5CVSS7.3AI score0.08324EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/01/21 9:36 a.m.3 views

mod_proxy_ftp XSS

modproxyftp in Apache 2.2.x before 2.2.7-dev, 2.0.x before 2.0.62-dev, and 1.3.x before 1.3.40-dev does not define a charset, which allows remote attackers to conduct cross-site scripting XSS attacks using UTF-7 encoding...

4.3CVSS7.1AI score0.14611EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2008/01/21 12:0 a.m.5 views

PT-2008-2088 · Apache +2 · Apache Http Server +2

Name of the Vulnerable Software and Affected Versions: Apache HTTP Server versions 1.3.39 and earlier in the 1.3.x series Apache HTTP Server versions 2.0.61 and earlier in the 2.0.x series Apache HTTP Server versions 2.2.6 and earlier in the 2.2.x series Description: A CRLF injection issue in the...

4.3CVSS7.5AI score0.6477EPSS
Exploits4References38
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.27 views

Debian Security Advisory DSA 187-1 (apache)

The remote host is missing an update to apache announced via advisory DSA 187-1. OpenVAS Vulnerability Test $Id: deb1871.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 187-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.5CVSS0.7AI score0.94006EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2008/01/15 9:38 a.m.4 views

httpd mod_proxy_balancer crash

The balancerhandler function in modproxybalancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service child process crash via an invalid bb variable...

4CVSS7.3AI score0.09951EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/01/15 9:25 a.m.3 views

mod_autoindex XSS

Cross-site scripting XSS vulnerability in modautoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it could be argued that th...

6.1CVSS7.3AI score0.26188EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2008/01/15 9:25 a.m.5 views

httpd: mod_imagemap XSS

Cross-site scripting XSS vulnerability in the 1 modimap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the 2 modimagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS7.3AI score0.46603EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/01/15 9:17 a.m.4 views

httpd: out of bounds read

The date handling code in modules/proxy/proxyutil.c modproxy in Apache 2.3.0, when using a threaded MPM, allows remote origin servers to cause a denial of service caching forward proxy process crash via crafted date headers that trigger a buffer over-read...

5CVSS7.5AI score0.12901EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2008/01/15 9:17 a.m.5 views

mod_autoindex XSS

Cross-site scripting XSS vulnerability in modautoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it could be argued that th...

6.1CVSS7.3AI score0.26188EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2008/01/15 9:17 a.m.8 views

httpd: mod_imagemap XSS

Cross-site scripting XSS vulnerability in the 1 modimap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the 2 modimagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS7.3AI score0.46603EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/01/15 9:9 a.m.7 views

httpd: mod_imagemap XSS

Cross-site scripting XSS vulnerability in the 1 modimap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the 2 modimagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS7.3AI score0.46603EPSS
Exploits1References4
Rows per page
Query Builder