Lucene search
K

7 matches found

F5 Networks
F5 Networks
added 2015/09/24 12:0 a.m.51 views

SOL17317 - Apache HTTP server vulnerability CVE-2015-0253

The readrequestline function in server/protocol.c in the Apache HTTP Server 2.4.12 does not initialize the protocol structure member, which allows remote attackers to cause a denial of service NULL pointer dereference and process crash by sending a request that lacks a method to an installation...

5CVSS3.4AI score0.14734EPSS
Exploits0References3
Prion
Prion
added 2015/07/20 11:59 p.m.31 views

Null pointer dereference

The readrequestline function in server/protocol.c in the Apache HTTP Server 2.4.12 does not initialize the protocol structure member, which allows remote attackers to cause a denial of service NULL pointer dereference and process crash by sending a request that lacks a method to an installation...

5CVSS6.7AI score0.14734EPSS
Exploits0References27Affected Software5
UbuntuCve
UbuntuCve
added 2015/07/20 11:59 p.m.25 views

CVE-2015-0253

The readrequestline function in server/protocol.c in the Apache HTTP Server 2.4.12 does not initialize the protocol structure member, which allows remote attackers to cause a denial of service NULL pointer dereference and process crash by sending a request that lacks a method to an installation...

5CVSS6.8AI score0.14734EPSS
Exploits0References3
CVE
CVE
added 2015/07/20 11:0 p.m.136 views

CVE-2015-0253

CVE-2015-0253 affects the Apache HTTP Server 2.4.12. The vulnerability arises in the read_request_line function within server/protocol.c, where the protocol structure member is not initialized. This can enable a remote attacker to trigger a denial-of-service via a NULL pointer dereference and cra...

5CVSS7.9AI score0.14734EPSS
Exploits0References27Affected Software1
Cvelist
Cvelist
added 2015/07/20 11:0 p.m.35 views

CVE-2015-0253

The readrequestline function in server/protocol.c in the Apache HTTP Server 2.4.12 does not initialize the protocol structure member, which allows remote attackers to cause a denial of service NULL pointer dereference and process crash by sending a request that lacks a method to an installation...

8.1AI score0.14734EPSS
Exploits0References27
CNVD
CNVD
added 2015/07/20 12:0 a.m.3 views

Apache ErrorDocument 400 Points to Denial of Service Vulnerability

Apache is an open source HTTPD service program. A security vulnerability exists in Apache that allows a remote user to crash an application via ErrorDocument 400 pointing to a local URL path containing an active INCLUDES filter, resulting in a denial-of-service attack...

5CVSS8.1AI score0.14734EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2015/02/04 12:0 a.m.60 views

apache24 -- multiple vulnerabilities

Jim Jagielski reports: CVE-2015-3183 cve.mitre.org core: Fix chunk header parsing defect. Remove aprbrigadeflatten, buffering and duplicated code from the HTTPIN filter, parse chunks in a single pass with zero copy. Limit accepted chunk-size to 2^63-1 and be strict about chunk-ext authorized...

5CVSS7.3AI score0.73327EPSS
Exploits0References1
Rows per page
Query Builder