Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2016/10/26 12:0 a.m.20 views

Amazon Linux: Security Advisory (ALAS-2016-721)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.03524EPSS
Exploits0References2
Amazon
Amazon
added 2016/07/14 12:0 a.m.43 views

Important: varnish

Issue Overview: Varnish 3.x before 3.0.7, when used in certain stacked installations, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a header line terminated by a \r carriage return character in conjunction with multiple Content-Length...

7.5CVSS7.9AI score0.03524EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/05/18 12:0 a.m.26 views

openSUSE Security Update : varnish (openSUSE-2016-588)

This varnish update to version 3.0.7 fixes the following issues : Security issues fixed : - CVE-2015-8852: Vulnerable to HTTP Smuggling issues: Double Content Length and bad EOL. boo976097 Bugs fixed : - Stop recognizing a single CR \r as a HTTP line separator. - Improved error detection on...

7.5CVSS7.4AI score0.03524EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/05/09 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2016-0150)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.03524EPSS
Exploits0References4
CVE
CVE
added 2016/04/25 2:0 p.m.75 views

CVE-2015-8852

Varnish 3.x before 3.0.7 is vulnerable to HTTP header injection/response smuggling due to a header line terminated by a CR in combination with multiple Content-Length headers. Exploitation could enable HTTP response splitting and related impacts. Remediation: upgrade to Varnish 3.0.7 or newer (as...

7.5CVSS7.3AI score0.03524EPSS
Exploits0References8Affected Software1
Debian
Debian
added 2016/04/22 7:34 a.m.24 views

[SECURITY] [DSA 3553-1] varnish security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3553-1 [email protected] https://www.debian.org/security/ Sebastien Delafond April 22, 2016 https://www.debian.org/security/faq -...

5CVSS1AI score0.03524EPSS
Exploits0
Rows per page
Query Builder