CVE-2006-4625

PHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server httpd.conf options, such as safemode and openbasedir, via the inirestore function, which resets the values to their php.ini Master Value defaults...

Update Protection against Apache LDAP HTTP Server Buffer Overflow Vulnerability

A vulnerability exists in Apache HTTP Server. Attackers can trigger this vulnerability via crafted URLs that are not properly handled using certain Rewrite rules. This issue only affects installations using Rewrite rules with specific characteristics. This flaw allows attackers to cause denial of...

PHP 5.1.6 / 4.4.4 Critical php_admin* bypass by ini_restore()

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP 5.1.6 / 4.4.4 Critical phpadmin bypass by inirestore Author: Maksymilian Arciemowicz cXIb8O3 Date: - - Written: 05.09.2006 - - Public: 09.09.2006 SecurityAlert Id: 42 CVE: CVE-2006-4625 SecurityRisk: High Affected Software: PHP 5.1.6 / 4.4.4 = x...

[SECURITY] [DSA 1167-1] New apache packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1167-1 [email protected] http://www.debian.org/security/ Steve Kemp September 4th, 2005 http://www.debian.org/security/faq -...

DSA-1167-1 apache - missing input sanitising

Bulletin has no description...

modrewritepoc.txt

Public release date of POC/Exploit: 2006-08-20 Author: Jacobo Avariento Gimeno CVE id: CVE-2006-3747 Bugtraq id: 19204 CERT advisory: VU395412 Severity: high Introduction ---- On July 28 2006 Mark Dowd McAfee Avert Labs reported a vulnerability found in modrewrite apache module to the bugtraq...

httpd, mod_ssl security update

CentOS Errata and Security Advisory CESA-2006:0618 Updated Apache httpd packages that correct a security issue are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a...

Apache 1.3.352.0.582.2.2 - Arbitrary HTTP Request Headers Security

Apache 1.3.352.0.582.2.2 - Arbitrary HTTP Request Headers Security source: https://www.securityfocus.com/bid/19661/info Apache HTTP server is prone to a security weakness related to HTTP request headers. An attacker may exploit this issue to steal cookie-based authentication credentials and launc...

Apache 1.3.35/2.0.58/2.2.2 - Arbitrary HTTP Request Headers Security

source: https://www.securityfocus.com/bid/19661/info Apache HTTP server is prone to a security weakness related to HTTP request headers. An attacker may exploit this issue to steal cookie-based authentication credentials and launch other attacks. var req:LoadVars=new LoadVars;...

Apache 1.3.372.0.592.2.3 mod_rewrite - Remote Overflow

Apache 1.3.372.0.592.2.3 modrewrite - Remote Overflow !/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must...

Apache mod_rewrite buffer overflow

Off-by-one overflow on modrewrite LDAP schema if "RewriteEngine on"...

Apache < 1.3.37 2.0.59 2.2.3 (mod_rewrite) Remote Overflow PoC

No description provided by source. !/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack jack\x40gulcas\x2Eorg 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must...

Apache < 1.3.37/2.0.59/2.2.3 mod_rewrite - Remote Overflow

!/bin/sh Exploit for Apache modrewrite off-by-one. Vulnerability discovered by Mark Dowd. CVE-2006-3747 by jack 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must recalculate adressess. Shellcode is based on Taeho Oh...

Apache < 1.3.37, 2.0.59, 2.2.3 (mod_rewrite) Remote Overflow PoC

Exploit for multiple platform in category dos / poc ================================================================ Apache 2006-08-20 Thx to xuso for help me with the shellcode. I suppose that you've the "RewriteRule kung/. $1" rule if not you must recalculate adressess. Shellcode is based on...

Apache Mod_SSL可定制错误文档拒绝服务漏洞

BUGTRAQ ID: 16152 CVECAN ID: CVE-2005-3357 ModSSL是Apache服务器上的SSL实现，用来为Apache Web服务器提供加密支持。 在某些配置情况下Apache的ModSSL存在拒绝服务器，远程攻击者可能利用此漏洞导致Apache服务器的拒绝服务。 此拒绝服务漏洞是一个可能的空指针废弃问题引起的，当Apache被配置成支持对代码400错误可定制ErrorDocument时可触发此漏洞，远程攻击者可导致Apache进程或线程崩溃，持继性的攻击可以使Apache失去响应。 Apache Group Apache 2.x 临时解决方法：...

PHP 4.4.35.1.4 - sscanf Local Buffer Overflow

PHP 4.4.35.1.4 - sscanf Local Buffer Overflow ? / hoagiephpsscanf.php PHP = 4.4.3 / 5.1.4 local buffer overflow exploit howto get offsets: set $baseaddr to 0x41414141 ulimit -c 20000 /etc/init.d/apache restart execute script via web browser tail /var/log/apache/error.log ... Wed Aug 16 15:07:10...

CVE-2006-4110

Apache 2.2.2, when running on Windows, allows remote attackers to read source code of CGI programs via a request that contains uppercase or alternate case characters that bypass the case-sensitive ScriptAlias directive, but allow access to the file on case-insensitive file systems...

CVE-2006-4110

Apache 2.2.2, when running on Windows, allows remote attackers to read source code of CGI programs via a request that contains uppercase or alternate case characters that bypass the case-sensitive ScriptAlias directive, but allow access to the file on case-insensitive file systems...

Apache for Windows script source code leak

It's possible to access script code if cgi-bin is within DocumentRoot...

CGI Script Source Code Disclosure Vulnerability in Apache for Windows

ADVISORY NAME: CGI Script Source Code Disclosure Vulnerability in Apache for Windows VULNERABLE SYSTEMS: The vulnerability has been verified on Apache 2.2.2 running on Microsoft Windows XP, Version 2002, Service Pack 2. FOUND BY: Susam Pal FOUND ON: 8th August, 2007 VULNERABILITY TYPE: Informatio...