5907 matches found
CVE-2007-6750
The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service daemon outage via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the modreqtimeout module in versions before 2.2.15...
CVE-2009-5111
GoAhead WebServer allows remote attackers to cause a denial of service daemon outage via partial HTTP requests, as demonstrated by Slowloris...
CVE-2009-5110
dhttpd allows remote attackers to cause a denial of service daemon outage via partial HTTP requests, as demonstrated by Slowloris...
CVE-2009-5111
Affected product: GoAhead WebServer. Vulnerability arises from handling of partial HTTP requests, enabling remote attackers to cause a denial of service (daemon outage) as demonstrated by Slowloris. Exploitation details and practical impact are stated; no patch/version or remediation is provided ...
CVE-2011-5009
The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service NULL pointer dereference via 1 a crafted Content-Length in an HTTP POST or 2 an invalid HTTP request method...
Null pointer dereference
The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service NULL pointer dereference via 1 a crafted Content-Length in an HTTP POST or 2 an invalid HTTP request method...
Novell GroupWise Internet Agent HTTP Interface Stack Buffer Overflow (CVE-2011-0334)
A remote code execution vulnerability has been reported in Novell GroupWise Internet Agent GWIA. The vulnerability is due to insufficient bounds validation while parsing GET or POST Request-URIs from HTTP requests. A remote attacker could exploit this vulnerability by sending a specially crafted...
[SECURITY] [DSA 2358-1] openjdk-6 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2358-1 [email protected] http://www.debian.org/security/ December 05, 2011 http://www.debian.org/security/faq - -------------------------------------------------------------------------...
CVE-2011-4435
The web-server component in the Consolidation and Analysis Engine CAE Server in DB2 Query Monitor in IBM DB2 Tools 2.3.0 for z/OS does not prevent directory browsing, which allows remote attackers to obtain sensitive information via HTTP requests...
CVE-2011-4435
The web-server component in the Consolidation and Analysis Engine CAE Server in DB2 Query Monitor in IBM DB2 Tools 2.3.0 for z/OS does not prevent directory browsing, which allows remote attackers to obtain sensitive information via HTTP requests...
Directory traversal
The web-server component in the Consolidation and Analysis Engine CAE Server in DB2 Query Monitor in IBM DB2 Tools 2.3.0 for z/OS does not prevent directory browsing, which allows remote attackers to obtain sensitive information via HTTP requests...
CVE-2011-4435
The web-server component in the Consolidation and Analysis Engine CAE Server in DB2 Query Monitor in IBM DB2 Tools 2.3.0 for z/OS does not prevent directory browsing, which allows remote attackers to obtain sensitive information via HTTP requests...
Debian: Security Advisory (DSA-2311-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-2311-1 : openjdk-6 - several vulnerabilities
Several vulnerabilities have been discovered in OpenJDK, an implementation of the Java SE platform. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2011-0862 Integer overflow errors in the JPEG and font parser allow untrusted code including applets to...
Multiple vulnerabilities in Help Desk Software
Vulnerability ID: HTB23041 Reference: https://www.htbridge.ch/advisory/multiplevulnerabilitiesinhelpdesksoftware.html Product: Help Desk Software Vendor: freehelpdesk.org http://freehelpdesk.org/ Vulnerable Version: 1.1b and probably prior Tested Version: 1.1b Vendor Notification: 17 August 2011...
Important: Red Hat Security Advisory: httpd and httpd22 security update
Updated httpd and httpd22 packages that fix one security issue are now available for JBoss Enterprise Web Server 1.0.2 for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...
Important: Red Hat Security Advisory: httpd security update
Updated httpd packages that fix one security issue are now available for Red Hat Enterprise Linux 3 Extended Life Cycle Support. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...
Progea Movicon / PowerHMI 11.2.1085 Heap Overflow
Luigi Auriemma Application: Progea Movicon / PowerHMI http://www.progea.com Versions: = 11.2.1085 Platforms: Windows Bug: heap overflow Exploitation: remote Date: 13 Sep 2011 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 The Code 4 Fix =============== ...
progea movicon / powerhmi 11.2.1085 - Multiple Vulnerabilities
Luigi Auriemma Application: Progea Movicon / PowerHMI http://www.progea.com Versions: = 11.2.1085 Platforms: Windows Bug: memory corruption Exploitation: remote Date: 13 Sep 2011 Author: Luigi Auriemma e-mail: [email protected] web: aluigi.org 1 Introduction 2 Bug 3 The Code 4 Fix...
TIBCO Security Advisory: September 13, 2011 - TIBCO® Managed FileTransfer
TIBCO® Managed File Transfer vulnerability Original release date: Sep 13, 2011 Last revised:-- CVE-2011-3423, CVE-2011-3424 Source: TIBCO SoftwareInc. TIBCO Managed File Transfer vulnerability Original release date: Sep 13, 2011 Last revised: -- Source: TIBCO Software Inc. Systems Affected TIBCO...