Fedora Update for httpd FEDORA-2008-1711

Check for the Version of httpd OpenVAS Vulnerability Test Fedora Update for httpd FEDORA-2008-1711 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Fedora Update for httpd FEDORA-2008-1695

Check for the Version of httpd OpenVAS Vulnerability Test Fedora Update for httpd FEDORA-2008-1695 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Fedora Update for httpd FEDORA-2008-1695

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for httpd FEDORA-2008-1711

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fix header injection vulnerabilities

A number of vulnerabilities were found during JRA-16024 which expose JIRA to header injection attacks: Note that different application server configurations may expose or hide the presence of a header injection vulnerability. Standalone tomcat is usually not vulnerable. Tomcat 5.5.26 redirects al...

Fix header injection vulnerabilities

A number of vulnerabilities were found during JRA-16024 which expose JIRA to header injection attacks: Note that different application server configurations may expose or hide the presence of a header injection vulnerability. Standalone tomcat is usually not vulnerable. Tomcat 5.5.26 redirects al...

Fix header injection vulnerabilities

A number of vulnerabilities were found during JRA-16024 which expose JIRA to header injection attacks: Note that different application server configurations may expose or hide the presence of a header injection vulnerability. Standalone tomcat is usually not vulnerable. Tomcat 5.5.26 redirects al...

Java Runtime UTF-8 Decoder Smuggling Vector

Due to misconfiguration of mailing lists, it was just pointed out this is already public. Apologies to those vendors who have not reacted to Sun's announcements of December 2nd in a timely manner; Mitre ID: CVE-2008-2938 Initial title: Java Runtime UTF-8 Decoding Flaw Actual title: Java Runtime...

Apache Httpd < 2.2.12 : APR-util heap underwrite

A heap-based underwrite flaw was found in the way the bundled copy of the APR-util library created compiled forms of particular search patterns. An attacker could formulate a specially-crafted search keyword, that would overwrite arbitrary heap memory locations when processed by the pattern...

Linksys Wireless ADSL Router (WAG54G V.2) httpd DoS Exploit

Exploit for hardware platform in category dos / poc =========================================================== Linksys Wireless ADSL Router WAG54G V.2 httpd DoS Exploit =========================================================== nmap 192.168.1.1 Starting Nmap 4.20 http://insecure.org at 2008-12-...

Linksys WAG54G v2 Wireless ADSL Router - HTTPd Denial of Service

Linksys WAG54G v2 Wireless ADSL Router - HTTPd Denial of Service nmap 192.168.1.1 Starting Nmap 4.20 http://insecure.org at 2008-12-12 12:17 EST Interesting ports on 192.168.1.1: Not shown: 1695 closed ports PORT STATE SERVICE 23/tcp open telnet 443/tcp open https Nmap finished: 1 IP address 1 ho...

RHEL 3 / 4 / 5 : httpd (RHSA-2008:0967)

Updated httpd packages that resolve several security issues and fix a bug are now available for Red Hat Enterprise Linux 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A flaw was foun...

httpd security and bug fix update

2.2.3-11.0.1.el52.4 - use oracle index page oracleindex.html - update vstring and distro in specfile 2.2.3-11.el52.4 - add security fixes for CVE-2008-2364, CVE-2008-2939 468840...

auth-owners NSE Script

Attempts to find the owner of an open TCP port by querying an auth daemon which must also be open on the target system. The auth service, also known as identd, normally runs on port 113. Example Usage nmap -sV -sC Script Output 21/tcp open ftp ProFTPD 1.3.1 | auth-owners: nobody 22/tcp open ssh...

Abyss httpd crash

It was possible to kill the web server by sending empty HTTP fields namely Connection: and Range:. SPDX-FileCopyrightText: 2008 Renaud Deraison Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Samsung DVR SHR-2040 HTTPD拒绝服务漏洞

BUGTRAQ ID: 31047 CNCAN ID：CNCAN-2008090908 Samsung DVR SHR-2040是一款用于对TV广播，有线电视等传送进行记录的mini-PC。 Samsung DVR SHR-2040 WEB接口不正确处理HTTP请求，远程攻击者可以利用漏洞对设备进行拒绝服务攻击。 用于配置的CGIS文件过滤器存在未明错误，发送特殊构建的HTTP请求可导致应用程序崩溃。 Samsung SHR-2040 目前没有解决方案提供： http://www.samsung.com/ !/usr/bin/perl -w Samsung DVR SHR2040 HTT...

Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC

No description provided by source. !/usr/bin/perl -w Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC The vulnerability is caused due to an unspecified error in the cgis files filter used for configure propierties. This can be exploited by sending a specially crafted HTTP request NO...

Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC

Exploit for hardware platform in category dos / poc ========================================================== Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC ========================================================== !/usr/bin/perl -w Samsung DVR SHR2040 HTTPD Remote Denial of Service...

Fedora 9 : httpd-2.2.9-1.fc9 (2008-6393)

This update includes the latest release of httpd 2.2. Two security issues are fixed in this update: A flaw was found in the handling of excessive interim responses from an origin server when using modproxyhttp. In a forward proxy configuration, if a user of the proxy could be tricked into visitin...

Fedora 8 : httpd-2.2.9-1.fc8 (2008-6314)

This update includes the latest release of httpd 2.2. A security issue is fixed in this update: A flaw was found in the handling of excessive interim responses from an origin server when using modproxyhttp. In a forward proxy configuration, if a user of the proxy could be tricked into visiting a...