ModSecurity Denial Of Service

============================================= INTERNET SECURITY AUDITORS ALERT 2009-001 - Original release date: February 25th, 2009 - Last revised: March 19th, 2009 - Discovered by: Juan Galiana Lara - Severity: 7.8/10 CVSS Base Scored ============================================= I. VULNERABILI...

Breach Security ModSecurity for Apache DoS

Module hangs on incomplete HTTP POST multipart/form-data request...

ModSecurity 2.5.9 - Remote Denial of Service

ModSecurity 2.5.9 - Remote Denial of Service ============================================= INTERNET SECURITY AUDITORS ALERT 2009-001 - Original release date: February 25th, 2009 - Last revised: March 19th, 2009 - Discovered by: Juan Galiana Lara - Severity: 7.8/10 CVSS Base Scored...

ModSecurity多个拒绝服务漏洞

BUGTRAQ ID: 34096 modsecurity是经常与PHP结合使用的Web应用防火墙。 如果启用了PDF跨站脚本防护的话，提交给PDF文件的非GET请求会导致httpd进程崩溃；此外如果modsecurity解析了缺少部分首部名称的多部内容的话，可能导致Apache崩溃。 Breach Security modsecurity 2.5.8 Breach Security modsecurity 2.5.6 Breach Security modsecurity 2.5.5 厂商补丁： Breach Security ---------------...

waraxe-2008-SA064.txt

waraxe-2008-SA064 - Sql Injection in MyBB 1.2.11 =============================================================================== Author: Janek Vind "waraxe" Date: 21. January 2008 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-64.html Target software description: MyBB is a discussion...