CVE-2012-0883 affecting package httpd for versions less than 2.4.2-1

CVE-2012-0883 affecting package httpd for versions less than 2.4.2-1. A patched version of the package is available...

SUSE: Security Advisory (SUSE-SU-2013:0830-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2013:0469-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2013:0387-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES10 Security Update : apache2 (SUSE-SU-2013:0387-1)

This update fixes the following security issues with apache2 httpd : - Improper LDLIBRARYPATH handling CVE-2012-0883 - Filename escaping problem CVE-2012-2687 Additionally, some non-security bugs have been fixed as enumerated in the changelog of the RPM. Note that Tenable Network Security has...

HP System Management Homepage < 7.2.1.0 Multiple Vulnerabilities (BEAST)

According to the web server's banner, the version of HP System Management Homepage SMH hosted on the remote web server is a version prior to 7.2.1.0. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability, known as BEAST, exists in the SSL 3.0 and...

[security bulletin] HPSBMU02900 rev.2 - HP System Management Homepage &#40;SMH&#41; running on Linux and Windows, Multiple Remote and Local Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03839862 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03839862 Version: 2 HPSBMU02900 rev....

Security fix for the ALT Linux 9 package apache2 version 2.2.24-alt1

April 14, 2013 Aleksey Avdeev 2.2.24-alt1 - 2.2.24 - Security fixes CVE-2012-3499, CVE-2012-4558, CVE-2012-0883, CVE-2012-2687...

Security fix for the ALT Linux 10 package apache2 version 2.2.24-alt1

April 14, 2013 Aleksey Avdeev 2.2.24-alt1 - 2.2.24 - Security fixes CVE-2012-3499, CVE-2012-4558, CVE-2012-0883, CVE-2012-2687...

Security fix for the ALT Linux 8 package apache2 version 2.2.24-alt1

April 14, 2013 Aleksey Avdeev 2.2.24-alt1 - 2.2.24 - Security fixes CVE-2012-3499, CVE-2012-4558, CVE-2012-0883, CVE-2012-2687...

SuSE 11.2 Security Update : Apache (SAT Patch Number 7409)

This update fixes the following issues : - Denial of Service via special requests in modproxyajp. CVE-2012-4557 - improper LDLIBRARYPATH handling. CVE-2012-0883 - filename escaping problem Additionally, some non-security bugs have been fixed:. CVE-2012-2687 - ignore case when checking against SNI...

Fedora Update for httpd FEDORA-2013-1661

Check for the Version of httpd OpenVAS Vulnerability Test Fedora Update for httpd FEDORA-2013-1661 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Fedora Update for httpd FEDORA-2013-1661

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 17 : httpd-2.2.23-1.fc17 (2013-1661)

This update contains the 2.2.23 release of the Apache HTTP Server. http://www.eu.apache.org/dist/httpd/CHANGES2.2.23 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format...

Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 6.0.1 update

JBoss Enterprise Application Platform 6.0.1, which fixes multiple security issues, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...

Apache HTTP Server envvars本地权限提升漏洞

CVE ID: CVE-2012-0883 Apache HTTP Server是Apache软件基金会的一个开放源码的网页服务器，可以在大多数计算机操作系统中运行，由于其多平台和安全性被广泛使用，是最流行的Web服务器端软件之一。 Apache HTTP Server 2.4.2之前版本的envvars 即envvars-std在LDLIBRARYPATH中放置了零长度的目录名称，可允许本地用户在执行apachectl过程中通过当前工作目录中的木马DSO获取权限。 0 Apache Group HTTP Server 2.4.2 厂商补丁： Apache Group...

apache22 -- several vulnerabilities

Apache HTTP SERVER PROJECT reports: low: XSS in modnegotiation when untrusted uploads are supported CVE-2012-2687 Possible XSS for sites which use modnegotiation and allow untrusted uploads to locations which have MultiViews enabled. low: insecure LDLIBRARYPATH handling CVE-2012-0883 This issue w...

FreeBSD Ports: apache

The remote host is missing an update to the system as announced in the referenced advisory. VID de2bc01f-dc44-11e1-9f4d-002354ed89bc OpenVAS Vulnerability Test $ Description: Auto generated from VID de2bc01f-dc44-11e1-9f4d-002354ed89bc Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

FreeBSD Ports: apache

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2012-0883

CVE-2012-0883 affects the Apache HTTP Server up to version 2.4.2, where the envvars (envvars-std) feature places a zero-length directory name in LD_LIBRARY_PATH. This enables local users to gain privileges by exploiting a Trojan horse DSO in the current working directory during execution of apach...