CVE-1999-0448

IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote attacker to hide the URL they really request...

Security Bulletin: Open Source Apache Tomcat Vulnerabilities affect Algo One - Counterparty Credit Risk

Summary Apache Tomcat could allow a remote attacker to bypass security restrictions Vulnerability Details CVE-ID: CVE-2017-5647 DESCRIPTION: Apache Tomcat could allow a remote attacker to obtain sensitive information, caused by an error in the processing of pipelined requests in send file. An...

Microsoft IIS 2.03.04.05.05.1 - Internal IP Address Disclosure

Microsoft IIS 2.03.04.05.05.1 - Internal IP Address Disclosure source: https://www.securityfocus.com/bid/1499/info When a remote user attempts to access an area protected by basic authentication with no realm defined, while specifying HTTP 1.0, Microsoft IIS will return an Access Denied error...

CVE-1999-0448

The CVE-1999-0448 issue affects IIS 4.0 and Apache by allowing remote control over log HTTP request methods so that the actual requested URL can be hidden. Root cause is how the log records capture the method, potentially truncating or misrepresenting the request, enabling a malicious user to con...

CVE-1999-0448

IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote attacker to hide the URL they really request...

PT-1999-1131 · Microsoft +1 · Iis +1

Name of the Vulnerable Software and Affected Versions: IIS version 4.0 Apache affected versions not specified Description: The issue allows a remote attacker to hide the URL they are requesting by taking advantage of how IIS 4.0 and Apache log HTTP request methods, regardless of their length...