156 matches found
Subversion -- multiple vulnerabilities
Subversion team reports: Subversion's moddavsvn Apache HTTPD server module will use excessive amounts of memory when a large number of properties are set or deleted on a node. Subversion's moddavsvn Apache HTTPD server module will crash when a LOCK request is made against activity URLs...
CVE-2013-1845
The moddavsvn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service memory consumption by 1 setting or 2 deleting a large number of properties for a file or directory...
CVE-2013-1846
The moddavsvn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service NULL pointer dereference and crash via a LOCK on an activity URL...
[SECURITY] [DSA 2637-1] apache2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2637-1 [email protected] http://www.debian.org/security/ Stefan Fritsch March 04, 2013 http://www.debian.org/security/faq -...
Moderate: Red Hat Bug Fix Advisory: mod_nss bug fix update
Updated modnss packages that fix multiple bugs are now available for Red Hat Enterprise Linux 5. The modnss module provides strong cryptography for the Apache HTTP Server via the Secure Sockets Layer SSL and Transport Layer Security TLS protocols, using the Network Security Services NSS security...
Debian: Security Advisory (DSA-2579-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 2579-1 (apache2)
The remote host is missing an update to apache2 announced via advisory DSA 2579-1. OpenVAS Vulnerability Test $Id: deb25791.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2579-1 apache2 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
YingZhi Python 1.9 Arbitrary Traversal / Write
Exploit for php platform in category web applications YingZhi Python Programming Language for iOS Vendor: XiaoWen Huang Version 1.9. Product Websites http://sosilen.blog.163.com http://www.iphoneappstorm.com/iphone-apps/utilities/com.yingzhi.python/yingzhipython.php?id=493505744 YingZhi...
YingZhi Python 1.9 Arbitrary Traversal / Write
YingZhi Python Programming Language for iOS Vendor: XiaoWen Huang Version 1.9. Product Websites http://sosilen.blog.163.com http://www.iphoneappstorm.com/iphone-apps/utilities/com.yingzhi.python/yingzhipython.php?id=493505744 YingZhi Description: Python Interpreter is a native python development...
Scientific Linux Security Update : httpd on SL6.x i386/x86_64 (20120213)
The Apache HTTP Server is a popular web server. It was discovered that the fix for CVE-2011-3368 released in a previous update did not completely address the problem. An attacker could bypass the fix and make a reverse proxy connect to an arbitrary server not directly accessible to the attacker b...
CentOS Update for httpd CESA-2011:1392 centos4 x86_64
Check for the Version of httpd OpenVAS Vulnerability Test CentOS Update for httpd CESA-2011:1392 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Null HTTPd Server Content-Length HTTP Header Buffer Overflow Vulnerability
Null HTTPd Server is prone to heap based buffer overflow vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
myCare2x CMS - Multiple Web Vulnerabilities
Document Title: =============== myCare2x CMS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=524 Release Date: ============= 2012-05-02 Vulnerability Laboratory ID VL-ID: ==================================== 524 Common...
Debian DSA-2405-1 : apache2 - multiple issues
Several vulnerabilities have been found in the Apache HTTPD Server : - CVE-2011-3607 : An integer overflow in appregsub could allow local attackers to execute arbitrary code at elevated privileges via crafted .htaccess files. - CVE-2011-3368 CVE-2011-3639 CVE-2011-4317 : The Apache HTTP Server di...
[SECURITY] [DSA 2405-1] apache2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2405-1 [email protected] http://www.debian.org/security/ Stefan Fritsch February 06, 2012 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2405-1] apache2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2405-1 [email protected] http://www.debian.org/security/ Stefan Fritsch February 06, 2012 http://www.debian.org/security/faq -...
Subversion "mod_dav_svn"多个拒绝服务和信息泄露漏洞
BUGTRAQ ID: 48091 CVE ID: CVE-2011-1752,CVE-2011-1783,CVE-2011-1921,CVE-2011-1921 Subversion是一个自由,开源的版本控制系统。 Subversion在moddavsvn的实现上存在多个拒绝服务和信息泄露漏洞,远程攻击者可利用这些漏洞使应用程序崩溃,消耗掉所有内存资源或获取敏感信息。 Subversion的moddavsvn Apache HTTPD服务器模块在某些情境中会进入不存在的且每次重复都分配内存的逻辑循环,最终消耗服务器上的所有内存。 Apache Group Subversion 1.x...
subversion: security udpate (important)
Subversion was updated to version 1.6.17 to fix several security issues: - CVE-2011-1752: The moddavsvn Apache HTTPD server module can be crashed though when asked to deliver baselined WebDAV resources. - CVE-2011-1783: The moddavsvn Apache HTTPD server module can trigger a loop which consumes al...
[SECURITY] [DSA 2251-1] subversion security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2251-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst June 02, 2011 http://www.debian.org/security/faq -...
Caedo HTTPd Server 0.5.1 ALPHA Remote File Download
!/usr/bin/perl use LWP::Simple; Caedo HTTPd Server v 0.5.1 ALPHA Remote File Download Exploit Author : Zer0 Thunder if @ARGV $file"; print FILE $result; close FILE; print " File Saved : $file \n\n"; print "---------------------------------------------\n"; print "site : zt-security.com -...