4 matches found
SUSE CVE-2009-1902
The multipart processor in ModSecurity before 2.5.9 allows remote attackers to cause a denial of service crash via a multipart form datapost request with a missing part header name, which triggers a NULL pointer dereference...
Gentoo Security Advisory GLSA 200907-02 (mod_security)
The remote host is missing updates announced in advisory GLSA 200907-02. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
CVE-2009-1902
CVE-2009-1902 affects ModSecurity prior to 2.5.9. The vulnerability arises in the multipart processor when a datapost request has a missing part header name, causing a NULL pointer dereference and potential denial of service (remote crash). Evidence from SUSE confirms the same description and imp...
Fedora Core 10 FEDORA-2009-2686 (mod_security)
The remote host is missing an update to modsecurity announced via advisory FEDORA-2009-2686. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C b...