Mandrake Security Advisory MDVSA-2009:091 (mod_perl)

The remote host is missing an update to modperl announced via advisory MDVSA-2009:091. OpenVAS Vulnerability Test $Id: mdksa2009091.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:091 modperl Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

CVE-2009-0796

Cross-site scripting XSS vulnerability in Status.pm in Apache::Status and Apache2::Status in modperl1 and modperl2 for the Apache HTTP Server, when /perl-status is accessible, allows remote attackers to inject arbitrary web script or HTML via the URI...

Apache mod_perl 'Apache::Status'和'Apache2::Status'跨站脚本漏洞

BUGTRAQ ID: 34383 CVE ID：CVE-2009-0796 CNCVE ID：CNCVE-20090796 Apache是一款开放源代码的WEB服务程序。 Apache modperl 'Apache::Status'和'Apache2::Status'存在跨站脚本攻击，远程攻击者可以利用漏洞获得敏感信息。 目前没有详细漏洞细节提供。 Apache Software Foundation modperl 2.0.4 Apache Software Foundation modperl 2.0.3 Apache Software Foundation modperl...

mod_perl Apache::Status URI XSS

The remote web server contains an embedded Perl interpreter along with a version of Apache2::Status / Apache::Status that fails to sanitize the request URL before using it to generate dynamic HTML output. An attacker may be able to leverage this to inject arbitrary HTML and script code into a...

SUSE: Security Summary (SUSE-SR:2009:008)

The remote host is missing updates announced in advisory SUSE-SR:2009:008. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-6068)

php 5.1.9 fixes among other things some security issues : - Missing bounds checks of an error in the imageRotate function of the gd extension potentially allowed attackers to read portions of memory CVE-2008-5498. - the mbstring.funcoverload in .htaccess was applied to other virtual hosts on th...

Ubuntu: Security Advisory (USN-499-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for apache2 vulnerabilities USN-575-1

Ubuntu Update for Linux kernel vulnerabilities USN-575-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5751.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for apache2 vulnerabilities USN-575-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Ubuntu Update for apache2 vulnerabilities USN-499-1

Ubuntu Update for Linux kernel vulnerabilities USN-499-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4991.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for apache2 vulnerabilities USN-499-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Ubuntu USN-731-1 (apache2)

The remote host is missing an update to apache2 announced via advisory USN-731-1. For details, please visit the referenced security advisories. OpenVAS Vulnerability Test $Id: ubuntu7311.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7311.nasl 7969 2017-12-01 09:23:16Z santu $ Description:...

openSUSE 10 Security Update : apache2 (apache2-6054)

A DoS condition in apache2's modproxy has been fixed. CVE-2008-2364 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update apache2-6054. The text description of this...

Ubuntu: Security Advisory (USN-731-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

mod_perl -- cross-site scripting

Secunia reports: Certain input passed to the "Apache::Status" and "Apache2::Status" modules is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected website...

Linux/x86 - Kill service apache2 + pure-ftpd + sshd - 81 bytes

No description provided by source. / Linux x86 | Kill Service - Apache2 - Pure-Ftpd - sshd Shellcode 81 bytes Auhtor: Jonathan Salwan js.rac.projet AT gmail.com Web: http://www.shell-storm.org Disassembly of section .text: 08048060 start: 8048060: 6a 0b push $0xb 8048062: 58 pop %eax 8048063: 99...

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-5934)

This update of php5 fixes a directory traversal bug in ZipArchive CVE-2008-5658 and a buffer overflow in the mstring extension CVE-2008-5557. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

SuSE Update for apache2 SUSE-SA:2007:061

Check for the Version of apache2 OpenVAS Vulnerability Test $Id: gbsuse2007061.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for apache2 SUSE-SA:2007:061 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free softwar...

SuSE Update for apache2,apache SUSE-SA:2008:021

Check for the Version of apache2,apache OpenVAS Vulnerability Test $Id: gbsuse2008021.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for apache2,apache SUSE-SA:2008:021 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program i...

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-5787)

This update fixes a buffer overflow in phpimap.c that uses an old IMAP API. This bug can be exploited to execute arbitrary code remotely via long IMAP requests. CVE-2008-2829 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

openSUSE 10 Security Update : apache2 (apache2-5648)

Missing sanity checks of FTP URLs allowed cross site scripting XSS attacks via the modproxyftp module CVE-2008-2939. Missing precautions allowed cross site request forgery CSRF via the modproxybalancer interface CVE-2007-6420. A memory leak in the ssl module could crash apache CVE-2008-1678...

openSUSE 10 Security Update : apache2 (apache2-5628)

Missing sanity checks of FTP URLs allowed cross site scripting XSS attacks via the modproxyftp module CVE-2008-2939. Missing precautions allowed cross site request forgery CSRF via the modproxybalancer interface CVE-2007-6420. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...