8 matches found
Ubuntu: Security Advisory (USN-1765-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-1765-1: Apache HTTP Server vulnerabilities
Niels Heinen discovered that multiple modules incorrectly sanitized certain strings, which could result in browsers becoming vulnerable to cross-site scripting attacks when processing the output. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a...
CVE-2013-1048
The Debian apache2ctl script in the apache2 package squeeze before 2.2.16-6+squeeze11, wheezy before 2.2.22-13, and sid before 2.2.22-13 for the Apache HTTP Server on Debian GNU/Linux does not properly create the /var/lock/apache2 lock directory, which allows local users to gain privileges via an...
CVE-2013-1048
The CVE-2013-1048 entry concerns the Debian Apache HTTP Server: the apache2ctl script fails to properly create the /var/lock/apache2 directory in affected builds (squeeze < 2.2.16-6+squeeze11, wheezy < 2.2.22-13, sid
CVE-2013-1048
The Debian apache2ctl script in the apache2 package squeeze before 2.2.16-6+squeeze11, wheezy before 2.2.22-13, and sid before 2.2.22-13 for the Apache HTTP Server on Debian GNU/Linux does not properly create the /var/lock/apache2 lock directory, which allows local users to gain privileges via an...
Debian DSA-2637-1 : apache2 - several issues
Several vulnerabilities have been found in the Apache HTTPD server. - CVE-2012-3499 The modules modinfo, modstatus, modimagemap, modldap, and modproxyftp did not properly escape hostnames and URIs in HTML output, causing cross site scripting vulnerabilities. - CVE-2012-4558 Modproxybalancer did n...
[SECURITY] [DSA 2637-1] apache2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2637-1 [email protected] http://www.debian.org/security/ Stefan Fritsch March 04, 2013 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2637-1 (apache2 - several issues)
Several vulnerabilities have been found in the Apache HTTPD server. CVE-2012-3499 The modules modinfo, modstatus, modimagemap, modldap, and modproxyftp did not properly escape hostnames and URIs in HTML output, causing cross site scripting vulnerabilities. CVE-2012-4558 Modproxybalancer did not...