Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.8 views

MiracleLinux 3 : httpd-2.2.3-53.1.0.1.AXS3 (AXSA:2011-297:02)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-297:02 advisory. The Apache HTTP Server is a powerful, efficient, and extensible web server. Security issues fixed with this release: CVE-2011-3192 The byterange filter in the...

7.8CVSS7.5AI score0.98945EPSS
Exploits17References2
Hacker One
Hacker One
added 2016/01/25 1:1 p.m.208 views

Gratipay: grtp.co is vulnerable to http-vuln-cve2011-3192

vulnerability i have found! | http-vuln-cve2011-3192: | VULNERABLE: | Apache byterange filter DoS | State: VULNERABLE | IDs: CVE:CVE-2011-3192 OSVDB:74721 | The Apache web server is vulnerable to a denial of service attack when numerous | overlapping byte ranges are requested. | Disclosure date:...

7.8CVSS0.6AI score0.98945EPSS
Exploits17
Tenable Nessus
Tenable Nessus
added 2011/12/13 12:0 a.m.42 views

SuSE 11.1 Security Update : Apache2 (SAT Patch Number 5344)

This update brings Apache to version 2.2.12. The main reason is the enablement of the Server Name Indication SNI that allows several SSL-enabled domains on one IP address FATE311973. See the SSLStrictSNIVHostCheck directive as documented in /usr/share/apache2/manual/mod/modssl.html.en Also the...

7.8CVSS7.3AI score0.98945EPSS
Exploits30References11
OpenVAS
OpenVAS
added 2011/11/11 12:0 a.m.35 views

Ubuntu: Security Advisory (USN-1259-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.7AI score0.90734EPSS
Exploits14References2
OPENSUSE Linux
OPENSUSE Linux
added 2011/11/04 9:8 a.m.57 views

apache2: Fixed several security issues (important)

This update fixes several security issues in the Apache webserver. The patch for the ByteRange remote denial of service attack CVE-2011-3192 was refined and the configuration options used by upstream were added. Introduce new config option: Allow MaxRanges Number of ranges requested, if exceeded,...

7.8CVSS3.6AI score0.98945EPSS
Exploits30References3
Oracle linux
Oracle linux
added 2011/10/20 12:0 a.m.57 views

httpd security and bug fix update

2.2.3-53.0.2.el57.3 - Fix modssl always performing full renegotiation orabug 12423387 - replace index.html with Oracle's index page oracleindex.html - update vstring and distro in specfile 2.2.3-53.3 - add security fix for CVE-2011-3368 743903 - fix regressions in byterange handling 736593...

5CVSS0.90734EPSS
Exploits12
RedHat Linux
RedHat Linux
added 2011/10/13 7:33 p.m.8 views

httpd: multiple ranges DoS

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service memory and CPU consumption via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different...

7.8CVSS7.3AI score0.98945EPSS
Exploits17References4
RedHat Linux
RedHat Linux
added 2011/09/21 7:50 p.m.10 views

httpd: multiple ranges DoS

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service memory and CPU consumption via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different...

7.8CVSS7.3AI score0.98945EPSS
Exploits17References4
RedHat Linux
RedHat Linux
added 2011/09/15 5:42 p.m.23 views

httpd: multiple ranges DoS

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service memory and CPU consumption via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different...

7.8CVSS7.3AI score0.98945EPSS
Exploits17References4
RedHat Linux
RedHat Linux
added 2011/09/14 6:59 p.m.5 views

httpd: multiple ranges DoS

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service memory and CPU consumption via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different...

7.8CVSS7.3AI score0.98945EPSS
Exploits17References4
Ubuntu
Ubuntu
added 2011/09/01 8:43 p.m.123 views

USN-1199-1: Apache vulnerability

A flaw was discovered in the byterange filter in Apache. A remote attacker could exploit this to cause a denial of service via resource exhaustion...

7.8CVSS7.5AI score0.98945EPSS
Exploits17
seebug.org
seebug.org
added 2011/08/30 12:0 a.m.55 views

Apache HTTP Server 1.3&2.x ByteRange过滤器拒绝服务漏洞

No description provided by source...

7.1AI score
Exploits0
OSV
OSV
added 2011/08/29 3:55 p.m.8 views

DEBIAN-CVE-2011-3192

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service memory and CPU consumption via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different...

7.8CVSS7.9AI score0.98945EPSS
Exploits17References1
Prion
Prion
added 2011/08/29 3:55 p.m.36 views

Code injection

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service memory and CPU consumption via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different...

7.8CVSS6.7AI score0.98945EPSS
Exploits17References72Affected Software5
UbuntuCve
UbuntuCve
added 2011/08/29 12:0 a.m.82 views

CVE-2011-3192

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service memory and CPU consumption via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different...

7.8CVSS7.2AI score0.98945EPSS
Exploits17References6
VulnCheck KEV
VulnCheck KEV
added 2011/08/24 12:0 a.m.5 views

VulnCheck KEV: CVE-2011-3192

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service memory and CPU consumption via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a...

7.8CVSS7.2AI score0.98945EPSS
Exploits17References1
Tenable Nessus
Tenable Nessus
added 2006/07/03 12:0 a.m.39 views

CentOS 3 / 4 : httpd (CESA-2005:608)

Updated Apache httpd packages that correct two security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular and freely-available Web server. A flaw...

10CVSS6.6AI score0.30576EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2005/10/05 12:0 a.m.34 views

Mandrake Linux Security Advisory : apache2 (MDKSA-2005:161)

A flaw was discovered in modssl's handling of the 'SSLVerifyClient' directive. This flaw occurs if a virtual host is configured using 'SSLVerifyClient optional' and a directive 'SSLVerifyClient required' is set for a specific location. For servers configured in this fashion, an attacker may be ab...

10CVSS6.7AI score0.30576EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/09/17 12:0 a.m.28 views

Fedora Core 4 : httpd-2.0.54-10.2 (2005-849)

This update includes two security fixes. An issue was discovered in modssl where 'SSLVerifyClient require' would not be honoured in location context if the virtual host had 'SSLVerifyClient optional' configured CVE-2005-2700. An issue was discovered in memory consumption of the byterange filter f...

10CVSS6.8AI score0.30576EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2005/09/06 1:37 p.m.33 views

Important: Red Hat Security Advisory: httpd security update

Updated Apache httpd packages that correct two security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular and freely-available Web server. A flaw...

10CVSS6.7AI score0.30576EPSS
Exploits0References3
Rows per page
Query Builder