RHEL 5 : httpd (RHSA-2009:1075)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2009:1075 advisory. The Apache HTTP Server is a popular and freely-available Web server. A flaw was found in the handling of compression structures between mods...

httpd: mod_ssl per-connection memory leak for connections with zlib compression

Memory leak in the zlibstatefulinit function in crypto/comp/czlib.c in libssl in OpenSSL 0.9.8f through 0.9.8h allows remote attackers to cause a denial of service memory consumption via multiple calls, as demonstrated by initial SSL client handshakes to the Apache HTTP Server modssl that specify...

Moderate: Red Hat Security Advisory: httpd security update

Updated httpd packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular and freely-available Web server. A flaw was found in the...

httpd security update

2.2.3-22.0.1.el53.1 - Replace index.html with oracle's index page oracleindex.html - Update vstring and distro in specfile 2.2.3-22.el53.1 - add security fixes for CVE-2008-1678, CVE-2009-1195 499284...

Important: Red Hat Security Advisory: httpd security update

Updated httpd packages that fix a security issue in modproxyajp are now available for JBoss Enterprise Web Server 1.0.0. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. The Apache modproxyajp...

Oracle XML DB SID Discovery

This module simply makes an authenticated request to retrieve the sid from the Oracle XML DB httpd server. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle XML DB SID Discovery',...

Apache Httpd < 2.2.12 : APR-util off-by-one overflow

An off-by-one overflow flaw was found in the way the bundled copy of the APR-util library processed a variable list of arguments. An attacker could provide a specially-crafted string as input for the formatted output conversion routine, which could, on big-endian platforms, potentially lead to th...

FreeBSD : apache mod_include buffer overflow vulnerability (6e6a6b8a-2fde-11d9-b3a2-0050fc56d258)

There is a buffer overflow in a function used by modinclude that may enable a local user to gain privileges of a httpd child. Only users that are able to create SSI documents can take advantage of that vulnerability. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

CentOS 3 / 4 / 5 : httpd (CESA-2008:0967)

Updated httpd packages that resolve several security issues and fix a bug are now available for Red Hat Enterprise Linux 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A flaw was foun...

RedHat Security Advisory RHSA-2009:0338

The remote host is missing updates announced in advisory RHSA-2009:0338. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. A heap-based buffer overflow flaw was found in PHP's mbstring extension. A remote attacker able to pass arbitrary input to a PHP scrip...

Moderate: Red Hat Security Advisory: php security update

Updated php packages that fix several security issues are now available for Red Hat Application Stack v2. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. ...

Mandriva Update for apache-conf MDVA-2008:129 (apache-conf)

Check for the Version of apache-conf OpenVAS Vulnerability Test Mandriva Update for apache-conf MDVA-2008:129 apache-conf Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

RHEL 3 / 4 : php (RHSA-2009:0337)

Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

CentOS 3 / 4 : php (CESA-2009:0337)

Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

RHEL 5 : php (RHSA-2009:0338)

Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. A...

Moderate: Red Hat Security Advisory: php security update

Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

SW-HTTPD Denial Of Service

/ SW-HTTPD Server v0.x Denial of Service PoC Multiple Connections with GET /A100 HTTP/1.1 Author: Jonathan Salwan Mail : submit AT shell-storm.org Web : http://www.shell-storm.org / include "stdio.h" include "unistd.h" include "stdlib.h" include "sys/types.h" include "sys/socket.h" include...

SW-HTTPD Server 0.x Remote Denial of Service Exploit

No description provided by source. / SW-HTTPD Server v0.x Denial of Service PoC Multiple Connections with GET /A100 HTTP/1.1 After server not found all pages. Author: Jonathan Salwan Mail : submit AT shell-storm.org Web : http://www.shell-storm.org / include "stdio.h" include "unistd.h" include...

SW-HTTPD Server 0.x Remote Denial of Service Exploit

Exploit for multiple platform in category dos / poc ==================================================== SW-HTTPD Server 0.x Remote Denial of Service Exploit ==================================================== / SW-HTTPD Server v0.x Denial of Service PoC Multiple Connections with GET /A100...

SW-HTTPD Server 0.x - Remote Denial of Service

SW-HTTPD Server 0.x - Remote Denial of Service / SW-HTTPD Server v0.x Denial of Service PoC Multiple Connections with GET /A100 HTTP/1.1 After server not found all pages. Author: Jonathan Salwan Mail : submit AT shell-storm.org Web : http://www.shell-storm.org / include "stdio.h" include "unistd....