CVE-2007-3303

Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows local users to cause a denial of service via certain code sequences executed in a worker process that 1 stop request processing by killing all worker processes and preventing creation of replacements or 2 hang the system by forcin...

CVE-2007-3304

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the workerscore and processscore arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer."...

CVE-2007-3304

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the workerscore and processscore arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer."...

DEBIAN-CVE-2007-3303

Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows local users to cause a denial of service via certain code sequences executed in a worker process that 1 stop request processing by killing all worker processes and preventing creation of replacements or 2 hang the system by forcin...

CVE-2007-3304

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the workerscore and processscore arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer."...

CVE-2007-3303

CVE-2007-3303 affects Apache httpd 2.0.59 and 2.2.4 with the Prefork MPM. The described issue arises from certain code sequences executed in a worker process, which can either stop request processing by killing all workers and preventing replacements, or cause the master process to fork an arbitr...

CVE-2007-3304

CVE-2007-3304 affects Apache HTTP Server (httpd) with the Prefork MPM. The issue arises when a local attacker can modify the scoreboard arrays (worker_score and process_score) to reference another process, enabling the master process to send SIGUSR1 and terminate that process, potentially causing...

CVE-2007-3303

Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows local users to cause a denial of service via certain code sequences executed in a worker process that 1 stop request processing by killing all worker processes and preventing creation of replacements or 2 hang the system by forcin...

[ MDKSA-2007:127 ] - Updated apache packages fix mod_mem_cache issue

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2007:127 http://www.mandriva.com/security/ Package : apache Date : June 19, 2007 Affected: 2007.1 Problem Description: The recallheaders function in modmemcache in Apache 2.2.4 does not properly copy all levels o...

php523-overflow.txt

?php //PHP 5.2.3 tidyparsestring & tidyrepairstring local //buffer overflow poc win //rgod //site: retrogod.altervista.org //quickly tested on xp sp2, worked both from the cli and on apache //let's have a look here: http://www.google.com/codesearch?hl=it&q=+tidyparsestring&sa=N if...

OpenOffice Detection

OpenOffice is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid25551; scriptversion"1.40"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/02/06"; scriptxrefname:"IAVT", value:"0001-T-0681"; scriptnameenglish:"OpenOffice...

PHP 5.2.3 Tidy extension Local Buffer Overflow Exploit

Exploit for unknown platform in category local exploits ====================================================== PHP 5.2.3 Tidy extension Local Buffer Overflow Exploit ====================================================== ?php //PHP 5.2.3 tidyparsestring & tidyrepairstring local //buffer overflow...

Apache MyFaces Tomahawk JSF Application autoscroll Multiple XSS

The remote web server uses an implementation of the Apache MyFaces Tomahawk JSF framework that fails to sanitize user-supplied input to the 'autoScroll' parameter before using it to generate dynamic content. An unauthenticated, remote attacker may be able to leverage this issue to inject arbitrar...

Moderate: Red Hat Security Advisory: mod_perl security update

Updated modperl packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Modperl incorporates a Perl interpreter into the Apache web server, so that the Apache HTTP...

DSA-1312-1 libapache-mod-jk

Bulletin has no description...

CentOS 3 / 4 / 5 : mod_perl (CESA-2007:0395)

Updated modperl packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, 5. This update has been rated as having low security impact by the Red Hat Security Response Team. Modperl incorporates a Perl interpreter into the Apache web server, so that the Apache web...

RHEL 2.1 : mod_perl (RHSA-2007:0486)

Updated modperl packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Modperl incorporates a Perl interpreter into the Apache web server, so that the Apache HTTP...

[SECURITY] [DSA 1312-1] New libapache-mod-jk packages fix information disclosure

-------------------------------------------------------------------------- Debian Security Advisory DSA 1312-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 18th, 2007 http://www.debian.org/security/faq -...

JVN#07100457 Apache Tomcat cross-site scripting vulnerability

Apache Tomcat, provided by the Apache Software Foundation, is an implementation of Java Servlets and JavaServer Pages technologies. Apache Tomcat Web Application Manager contains a cross-site scripting vulnerability. Impact When a user logs into Apache Tomcat Web Application Manager, an arbitrary...

mod_perl security update

CentOS Errata and Security Advisory CESA-2007:0395 Updated modperl packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, 5. This update has been rated as having low security impact by the Red Hat Security Response Team. Modperl incorporates a Perl interpreter int...