Lucene search
K

19 matches found

OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.20 views

Slackware: Security Advisory (SSA:2005-251-03)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.1AI score0.30576EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2012/09/10 12:0 a.m.34 views

Slackware: Security Advisory (SSA:2005-251-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.5AI score0.30576EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.61 views

SLES9: Security update for apache2,apache2-prefork,apache2-worker

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: apache2-worker apache2-prefork apache2 For more information, please visit the referenced security advisories. More details may also be found by searching for...

10CVSS0.5AI score0.94281EPSS
Exploits8
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.51 views

SLES9: Security update for apache2, apache2-prefork, apache2-worker

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: apache2-worker apache2-prefork apache2 For more information, please visit the referenced security advisories. More details may also be found by searching for...

10CVSS7.7AI score0.94281EPSS
Exploits8References1
OpenVAS
OpenVAS
added 2009/05/05 12:0 a.m.30 views

HP-UX Update for Apache HPSBUX01232

Check for the Version of Apache OpenVAS Vulnerability Test HP-UX Update for Apache HPSBUX01232 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

10CVSS9.6AI score0.30576EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.40 views

Gentoo Security Advisory GLSA 200509-12 (Apache)

The remote host is missing updates announced in advisory GLSA 200509-12. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

10CVSS0.2AI score0.30576EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.33 views

Debian Security Advisory DSA 805-1 (apache2)

The remote host is missing an update to apache2 announced via advisory DSA 805-1. Several problems have been discovered in Apache2, the next generation, scalable, extendable web server. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-1268 Marc Stern...

10CVSS0.8AI score0.30576EPSS
Exploits1
F5 Networks
F5 Networks
added 2007/05/16 12:0 a.m.49 views

SOL5857 - Client certificate check vulnerability in Apache - CVE-2005-2700

In the default configuration, BIG-IP and 3-DNS do not require client certificates to connect to the Configuration utility. This vulnerability cannot be exploited without making unsupported changes to the BIG-IP or 3-DNS web server configuration. This problem was tracked as CR53583 and CR53585 and...

10CVSS3.7AI score0.30576EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.47 views

SUSE-SA:2006:051: apache2

The remote host is missing the patch for the advisory SUSE-SA:2006:051 apache2. The web server Apache2 has been updated to fix several security issues: The security fix for CVE-2005-3357 denial of service broke the earlier security fix for SSL verification CVE-2005-2700. This problem has been...

10CVSS6.2AI score0.94281EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2006/07/03 12:0 a.m.39 views

CentOS 3 / 4 : httpd (CESA-2005:608)

Updated Apache httpd packages that correct two security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular and freely-available Web server. A flaw...

10CVSS6.6AI score0.30576EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2005/10/05 12:0 a.m.33 views

Mandrake Linux Security Advisory : apache2 (MDKSA-2005:161)

A flaw was discovered in modssl's handling of the 'SSLVerifyClient' directive. This flaw occurs if a virtual host is configured using 'SSLVerifyClient optional' and a directive 'SSLVerifyClient required' is set for a specific location. For servers configured in this fashion, an attacker may be ab...

10CVSS6.7AI score0.30576EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/09/17 12:0 a.m.28 views

Fedora Core 4 : httpd-2.0.54-10.2 (2005-849)

This update includes two security fixes. An issue was discovered in modssl where 'SSLVerifyClient require' would not be honoured in location context if the virtual host had 'SSLVerifyClient optional' configured CVE-2005-2700. An issue was discovered in memory consumption of the byterange filter f...

10CVSS6.8AI score0.30576EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/09/17 12:0 a.m.38 views

RHEL 2.1 : mod_ssl (RHSA-2005:773)

An updated modssl package for Apache that corrects a security issue is now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The modssl module provides strong cryptography for the Apache Web server via the Secure Sockets Layer SSL and...

10CVSS6.5AI score0.30576EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2005/09/17 12:0 a.m.49 views

Fedora Core 3 : httpd-2.0.53-3.3 (2005-848)

This update includes two security fixes. An issue was discovered in modssl where 'SSLVerifyClient require' would not be honoured in location context if the virtual host had 'SSLVerifyClient optional' configured CVE-2005-2700. An issue was discovered in memory consumption of the byterange filter f...

10CVSS6.8AI score0.30576EPSS
Exploits0References1
Debian
Debian
added 2005/09/12 2:21 p.m.31 views

[SECURITY] [DSA 807-1] New mod_ssl packages fix acl restriction bypass

-------------------------------------------------------------------------- Debian Security Advisory DSA 807-1 [email protected] http://www.debian.org/security/ Martin Schulze September 12th, 2005 http://www.debian.org/security/faq -...

10CVSS0.4AI score0.30576EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/09/12 12:0 a.m.43 views

RHEL 4 : httpd (RHSA-2005:608)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2005:608 advisory. The Apache HTTP Server is a popular and freely-available Web server. A flaw was discovered in modssl's handling of the SSLVerifyClient...

10CVSS7.2AI score0.30576EPSS
Exploits0References6
OSV
OSV
added 2005/09/06 11:3 p.m.11 views

CVE-2005-2700

sslenginekernel.c in modssl before 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location context, which allows remote attackers to bypass intended access restrictions...

10CVSS6.4AI score0.30576EPSS
Exploits0References72
CVE
CVE
added 2005/09/06 4:0 a.m.1075 views

CVE-2005-2700

This CVE concerns the Apache mod_ssl module (ssl_engine_kernel.c) where configuring SSLVerifyClient optional at global vhost level fails to enforce SSLVerifyClient require in per-location contexts. Attackers could bypass intended access restrictions by omitting a client certificate. Affected comp...

10CVSS9.3AI score0.30576EPSS
Exploits0References64Affected Software1
securityvulns
securityvulns
added 2005/09/05 12:0 a.m.43 views

mod_ssl "SSLVerifyClient" Security Bypass Security Issue

modssl "SSLVerifyClient" Security Bypass Security Issue Secunia Advisory: SA16700 Release Date: 2005-09-05 Critical: Moderately critical Impact: Security Bypass Where: From remote Solution Status: Vendor Patch Software: modssl 2.x Select a product and view a complete list of all Patched/Unpatched...

10CVSS0.5AI score0.30576EPSS
Exploits0
Rows per page
Query Builder