Lucene search
K

645 matches found

Tenable Nessus
Tenable Nessus
added 2015/02/24 12:0 a.m.64 views

Fedora 21 : php-5.6.6-1.fc21 (2015-2315)

19 Feb 2015, PHP 5.6.6 Core : - Removed support for multi-line headers, as the are deprecated by RFC 7230. Stas - Fixed bug 67068 getClosure returns somethings that's not a closure. Danack at basereality dot com - Fixed bug 68942 Use after free vulnerability in unserialize with DateTimeZone...

10CVSS7.7AI score0.94859EPSS
Exploits38References1
Prion
Prion
added 2015/02/19 3:59 p.m.8 views

Code injection

FastCGI aka fcgi and libfcgi 2.4.0 allows remote attackers to cause a denial of service segmentation fault and crash via a large number of connections...

5CVSS6.9AI score0.06086EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2015/02/19 3:59 p.m.9 views

CVE-2012-6687

FastCGI aka fcgi and libfcgi 2.4.0 allows remote attackers to cause a denial of service segmentation fault and crash via a large number of connections...

5CVSS6.4AI score0.06086EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2015/02/19 3:59 p.m.18 views

CVE-2012-6687

FastCGI aka fcgi and libfcgi 2.4.0 allows remote attackers to cause a denial of service segmentation fault and crash via a large number of connections...

5CVSS5.9AI score0.06086EPSS
Exploits0References1
OSV
OSV
added 2015/02/19 3:59 p.m.1 views

DEBIAN-CVE-2012-6687

FastCGI aka fcgi and libfcgi 2.4.0 allows remote attackers to cause a denial of service segmentation fault and crash via a large number of connections...

5CVSS6.3AI score0.06086EPSS
Exploits0References1
OSV
OSV
added 2015/02/19 3:59 p.m.10 views

CVE-2012-6687

FastCGI aka fcgi and libfcgi 2.4.0 allows remote attackers to cause a denial of service segmentation fault and crash via a large number of connections...

6.3AI score
Exploits0References7
OSV
OSV
added 2015/02/19 3:59 p.m.5 views

AZL-6418 CVE-2012-6687 affecting package fcgi for versions less than 2.4.0-7

FastCGI aka fcgi and libfcgi 2.4.0 allows remote attackers to cause a denial of service segmentation fault and crash via a large number of connections...

5CVSS5.8AI score0.06086EPSS
Exploits0References1
OSV
OSV
added 2015/02/19 3:59 p.m.4 views

AZL-34685 CVE-2012-6687 affecting package fcgi for versions less than 2.4.0-7

FastCGI aka fcgi and libfcgi 2.4.0 allows remote attackers to cause a denial of service segmentation fault and crash via a large number of connections...

5CVSS5.8AI score0.06086EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2015/02/19 3:0 p.m.16 views

CVE-2012-6687

FastCGI aka fcgi and libfcgi 2.4.0 allows remote attackers to cause a denial of service segmentation fault and crash via a large number of connections...

5CVSS6.3AI score0.06086EPSS
Exploits0
Cvelist
Cvelist
added 2015/02/19 3:0 p.m.19 views

CVE-2012-6687

FastCGI aka fcgi and libfcgi 2.4.0 allows remote attackers to cause a denial of service segmentation fault and crash via a large number of connections...

6.2AI score0.06086EPSS
Exploits0References7
CVE
CVE
added 2015/02/19 3:0 p.m.62 views

CVE-2012-6687

CVE-2012-6687 affects FastCGI (fcgi/libfcgi) 2.4.0, where remote attackers can cause a denial of service (segmentation fault/crash) by opening a large number of connections. The underlying cause is discussed in Mageia MGASA-2016-0089: fcgi does not perform range checks for file descriptors before...

5CVSS6.3AI score0.06086EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologies
added 2015/02/19 12:0 a.m.1 views

PT-2015-3536 · Openbsd +1 · Fastcgi +1

Name of the Vulnerable Software and Affected Versions: FastCGI versions 2.4.0 Description: The issue allows remote attackers to cause a denial of service, resulting in a segmentation fault and crash, by establishing a large number of connections. Recommendations: For FastCGI version 2.4.0, consid...

5CVSS6.9AI score0.06086EPSS
Exploits0References27
Tenable Nessus
Tenable Nessus
added 2015/02/13 12:0 a.m.53 views

Amazon Linux AMI : httpd24 (ALAS-2015-483)

modlua.c in the modlua module in the Apache HTTP Server 2.3.x and 2.4.x through 2.4.10 does not support an httpd configuration in which the same Lua authorization provider is used with different arguments within different contexts, which allows remote attackers to bypass intended access...

5CVSS6.2AI score0.60205EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.28 views

Oracle Solaris Third-Party Patch Update : lighttpd (cve_2014_2469_denial_of)

The remote Solaris system is missing necessary patches to address security updates : - lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service memory consumption by breaking a request into...

5CVSS5.5AI score0.12111EPSS
Exploits5References6
OSV
OSV
added 2014/12/15 6:59 p.m.1 views

DEBIAN-CVE-2014-3583

The handleheaders function in modproxyfcgi.c in the modproxyfcgi module in the Apache HTTP Server 2.4.10 allows remote FastCGI servers to cause a denial of service buffer over-read and daemon crash via long response headers...

5CVSS8.4AI score0.10783EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2014/12/15 5:27 p.m.31 views

CVE-2014-3583

The handleheaders function in modproxyfcgi.c in the modproxyfcgi module in the Apache HTTP Server 2.4.10 allows remote FastCGI servers to cause a denial of service buffer over-read and daemon crash via long response headers...

5CVSS7.4AI score0.10783EPSS
Exploits0
Cvelist
Cvelist
added 2014/12/15 5:27 p.m.27 views

CVE-2014-3583

The handleheaders function in modproxyfcgi.c in the modproxyfcgi module in the Apache HTTP Server 2.4.10 allows remote FastCGI servers to cause a denial of service buffer over-read and daemon crash via long response headers...

8.5AI score0.10783EPSS
Exploits0References26
OSV
OSV
added 2014/12/15 12:0 a.m.9 views

UBUNTU-CVE-2014-3583

The handleheaders function in modproxyfcgi.c in the modproxyfcgi module in the Apache HTTP Server 2.4.10 allows remote FastCGI servers to cause a denial of service buffer over-read and daemon crash via long response headers...

5CVSS7.1AI score0.10783EPSS
Exploits0References3
Hacker One
Hacker One
added 2014/10/05 2:27 a.m.18 views

Mail.ru: Выполнение кода PHP через FastCGI

Здравствуйте, Уязвимость существует на http://bw.mail.ru/ любой файл можно воспроизвести как php http://bw.mail.ru/robots.txt http://bw.mail.ru/robots.txt/c37hun.php http://bw.mail.ru/layout/all//img/imgmailru.gif http://bw.mail.ru/layout/all//img/imgmailru.gif/c37hun.php А для исправления Вам...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/10/03 12:0 a.m.81 views

FreeBSD : rt42 -- vulnerabilities related to shellshock (81e2b308-4a6c-11e4-b711-6805ca0b3d42)

Best Practical reports : RT 4.2.0 and above may be vulnerable to arbitrary execution of code by way of CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, or CVE-2014-6271 -- collectively known as 'Shellshock.' This vulnerability requires a privileged user with access to an RT instance...

10CVSS8AI score0.99999EPSS
Exploits157References7
Rows per page
Query Builder