Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.23 views

Fedora Update for lighttpd FEDORA-2007-2132

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.8CVSS6.7AI score0.12895EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.65 views

Gentoo Security Advisory GLSA 200710-02 (php)

The remote host is missing updates announced in advisory GLSA 200710-02. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.8CVSS0.7AI score0.13818EPSS
Exploits16
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.23 views

FreeBSD Ports: lighttpd

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

6.8CVSS6.6AI score0.12895EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2007/11/06 12:0 a.m.30 views

Fedora 7 : lighttpd-1.4.18-1.fc7 (2007-2132)

Lighttpd 1.4.17 and earlier is prone to a header overflow when using the modfastcgi extension, this can lead to arbitrary code execution in the fastcgi application. This 1.4.18 update fixes the issue. Note that Tenable Network Security has extracted the preceding description block directly from t...

6.8CVSS5.8AI score0.12895EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.36 views

openSUSE 10 Security Update : lighttpd (lighttpd-4532)

This update fixes a buffer overflow in the fcgienvadd function. Under some circumstances this bug allows remote code execution. CVE-2007-4727 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

6.8CVSS7.7AI score0.12895EPSS
Exploits1References1
Debian
Debian
added 2007/10/07 3:17 p.m.34 views

[SECURITY] [DSA 1362-2] New lighttpd packages fix buffer overflow

------------------------------------------------------------------------ Debian Security Advisory 1362-2 [email protected] http://www.debian.org/security/ Steve Kemp October 7th, 2007 http://www.debian.org/security/faq - ------------------------------------------------------------------------...

6.8CVSS6.6AI score0.12895EPSS
Exploits1
d2
d2
added 2007/09/12 7:17 p.m.70 views

DSquare Exploit Pack: D2SEC_LIGHTTPD3

Name| d2seclighttpd3 ---|--- CVE| CVE-2007-4727 Exploit Pack| D2ExploitPack Description| Lighttpd ModFastCGI Remote Header Overflow Exploit Notes|...

6.8CVSS1.2AI score0.12895EPSS
Exploits1
OSV
OSV
added 2007/09/12 7:17 p.m.7 views

CVE-2007-4727

Buffer overflow in the fcgienvadd function in modproxybackendfastcgi.c in the modfastcgi extension in lighttpd before 1.4.18 allows remote attackers to overwrite arbitrary CGI variables and execute arbitrary code via an HTTP request with a long content length, as demonstrated by overwriting the...

7.6AI score
Exploits0References18
CVE
CVE
added 2007/09/12 7:0 p.m.106 views

CVE-2007-4727

Lighttpd is affected by CVE-2007-4727: a buffer overflow in the FastCGI extension (mod_fastcgi) through the fcgi_env_add path in mod_proxy_backend_fastcgi.c when handling overly long HTTP headers. The issue can overwrite CGI variables (notably SCRIPT_FILENAME) and may lead to remote code executio...

6.8CVSS7.5AI score0.12895EPSS
Exploits1References18Affected Software1
Rows per page
Query Builder