Lucene search
K

17 matches found

F5 Networks
F5 Networks
added 2023/02/21 4:17 p.m.38 views

K14734: Apache HTTP server vulnerability CVE-2013-2249

Security Advisory Description modsessiondbd.c in the modsessiondbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new session ID, which has unspecified impact and remote attack vectors...

7.5CVSS8.1AI score0.14255EPSS
Exploits3Affected Software1
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.30 views

Slackware: Security Advisory (SSA:2013-218-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.29484EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.29 views

Mageia: Security Advisory (MGASA-2013-0231)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.29484EPSS
Exploits5References8
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.132 views

Apache 2.4.x < 2.4.6 Multiple Vulnerabilities

According to its banner, the version of Apache 2.4.x running on the remote host is prior to 2.4.6. It is, therefore, potentially affected by the following vulnerabilities : - A denial of service vulnerability exists relating to the 'moddav' module as it relates to MERGE requests. CVE-2013-1896 - ...

7.5CVSS7AI score0.29484EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2013/08/20 12:0 a.m.46 views

Fedora Update for httpd FEDORA-2013-13922

Check for the Version of httpd OpenVAS Vulnerability Test Fedora Update for httpd FEDORA-2013-13922 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

7.5CVSS7.1AI score0.29484EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2013/08/20 12:0 a.m.39 views

Fedora Update for httpd FEDORA-2013-13994

Check for the Version of httpd OpenVAS Vulnerability Test Fedora Update for httpd FEDORA-2013-13994 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

7.5CVSS7.1AI score0.29484EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2013/08/20 12:0 a.m.43 views

Fedora Update for httpd FEDORA-2013-13994

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/08/20 12:0 a.m.44 views

Fedora 18 : httpd-2.4.6-2.fc18 (2013-13922)

This update contains the latest release of the Apache HTTP Server, version 2.4.6. Two security issues are resolved in this update : - moddav: Sending a MERGE request against a URI handled by moddavsvn could trigger a segfault. CVE-2013-1896 - modsessiondbd: Make sure that dirty flag is respected...

7.5CVSS8.1AI score0.29484EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2013/08/10 12:0 a.m.46 views

Fedora 19 : httpd-2.4.6-2.fc19 (2013-13994)

This update contains the latest release of the Apache HTTP Server, version 2.4.6. Two security issues are resolved in this update : - moddav: Sending a MERGE request against a URI handled by moddavsvn could trigger a segfault. CVE-2013-1896 - modsessiondbd: Make sure that dirty flag is respected...

7.5CVSS8.1AI score0.29484EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2013/08/07 12:0 a.m.48 views

Slackware 12.1 / 12.2 / 13.0 / 13.1 / 13.37 / 14.0 / current : httpd (SSA:2013-218-02)

New httpd packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2013-218-02. The tex...

7.5CVSS8AI score0.29484EPSS
Exploits5References3
Slackware Linux
Slackware Linux
added 2013/08/06 7:20 a.m.57 views

[slackware-security] httpd

New httpd packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/httpd-2.4.6-i486-1slack14.0.txz: Upgraded. This update addresses two security issues: SECURITY:...

7.5CVSS7.2AI score0.29484EPSS
Exploits5
Mageia
Mageia
added 2013/07/26 11:36 a.m.55 views

Updated apache packages fix security vulnerabilities

Updated apache packages fix security vulnerabilities: moddav.c in the Apache HTTP Server before 2.4.6 does not properly determine whether DAV is enabled for a URI, which allows remote attackers to cause a denial of service segmentation fault via a MERGE request in which the URI is configured for...

7.5CVSS1.3AI score0.29484EPSS
Exploits5References6
seebug.org
seebug.org
added 2013/07/26 12:0 a.m.2501 views

Apache HTTP Server mod_session_dbd 远程安全漏洞(CVE-2013-2249)

BUGTRAQ ID: 61379 CVECAN ID: CVE-2013-2249 Apache HTTP Server是开源HTTP服务器。 Apache HTTP Server 2.4.6之前版本的modsessiondbd模块在保存会话过程中处理“脏旗标”时出错,存在远程安全漏洞,影响目前未知。 0 Apache 2.4.2 厂商补丁: Apache Group ------------ Apache Group已经为此发布了一个安全公告(Announcement2.4)以及相应补丁: Announcement2.4:Apache HTTP Server 2.4.6 Releas...

7.5CVSS7.4AI score0.14255EPSS
Exploits3
OSV
OSV
added 2013/07/23 5:20 p.m.19 views

CVE-2013-2249

modsessiondbd.c in the modsessiondbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new session ID, which has unspecified impact and remote attack vectors...

7.5CVSS6.4AI score0.14255EPSS
Exploits3References22
OSV
OSV
added 2013/07/23 5:20 p.m.1 views

BELL-CVE-2013-2249 CVE-2013-2249 does not affect BellSoft software

Bulletin has no description...

7.5CVSS7.3AI score0.14255EPSS
Exploits3References1
CVE
CVE
added 2013/07/23 3:0 p.m.2012 views

CVE-2013-2249

CVE-2013-2249 concerns Apache HTTP Server’s mod_session_dbd. The issue arises when mod_session_dbd proceeds with save operations for a session without honoring the dirty flag or requiring a new session ID, as described in multiple sources. Public references indicate the vulnerability is associate...

7.5CVSS6.4AI score0.14255EPSS
Exploits3References18Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/07/23 12:0 a.m.100 views

Apache 2.4.x < 2.4.5 Multiple Vulnerabilities

According to its banner, the version of Apache 2.4.x running on the remote host is prior to 2.4.5. It is, therefore, potentially affected by the following vulnerabilities : - A denial of service vulnerability exists relating to the 'moddav' module as it relates to MERGE requests. CVE-2013-1896 - ...

7.5CVSS8.1AI score0.29484EPSS
Exploits5References4
Rows per page
Query Builder