11 matches found
EUVD-2017-7139
Malicious code in bioql PyPI...
RHSA-2017:3194 Red Hat Security Advisory: httpd security update
Bulletin has no description...
RHSA-2016:1421 Red Hat Security Advisory: httpd security update
Bulletin has no description...
RHSA-2015:1668 Red Hat Security Advisory: httpd security update
Bulletin has no description...
RHSA-2014:0920 Red Hat Security Advisory: httpd security update
Bulletin has no description...
RHSA-2011:1369 Red Hat Security Advisory: httpd security update
Bulletin has no description...
RHSA-2004:015 Red Hat Security Advisory: httpd security update
Bulletin has no description...
Apache Httpd < 2.0.47 : mod_ssl renegotiation issue
A bug in the optional renegotiation code in modssl included with Apache httpd can cause cipher suite restrictions to be ignored. This is triggered if optional renegotiation is used SSLOptions +OptRenegotiate along with verification of client certificates and a change to the cipher suite over the...
Apache Httpd < 2.0.49 : Error log escape filtering
Apache does not filter terminal escape sequences from error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences...
Apache Httpd < 2.0.44 : MS-DOS device name filtering
On Windows platforms Apache did not correctly filter MS-DOS device names which could lead to denial of service attacks or remote code execution...
XSS in Null HTTPd
Null HTTPd is a simple HTTP server that runs on Win32/Unix systems. It is quite basic, but offers good CGI support. A vulnerability in Null HTTPd may allow cross-site scripting via a 404 page: http://localhost/a?x=SCRIPTalertdocument.URL/SCRIPT You have to place this in the query string so that i...