Moderate: Red Hat Security Advisory: Red Hat Network Satellite Server security update

Red Hat Network Satellite Server version 5.0.2 is now available. This update includes fixes for a number of security issues in Red Hat Network Satellite Server components. This update has been rated as having moderate security impact by the Red Hat Security Response Team. During an internal...

httpd scoreboard lack of PID protection

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the workerscore and processscore arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer."...

Debian DSA-1539-1 : mapserver - several vulnerabilities

Chris Schmidt and Daniel Morissette discovered two vulnerabilities in mapserver, a development environment for spatial and mapping applications. The Common Vulnerabilities and Exposures project identifies the following two problems : - CVE-2007-4542 Lack of input sanitizing and output escaping in...

DSA-1539-1 mapserver - multiple vulnerabilities

Bulletin has no description...

. htaccess Backdoor-vulnerability warning-the black bar safety net

Author: GaRYwofeiwoatgmaildotcom The PHP manual,often see often new: PHP has a characteristic,will be based on apache httpd. conf. htaccess to override their php. ini settings. Just,find two of the evil attributes: ------------------------------ autoprependfile...

Ruby 1.8.6 (Webrick Httpd 1.3.1) Directory Traversal Vulnerability

Exploit for multiple platform in category remote exploits ================================================================== Ruby 1.8.6 Webrick Httpd 1.3.1 Directory Traversal Vulnerability ==================================================================...

Slackware 12.0 / current : httpd (SSA:2008-045-01)

New httpd packages are available for Slackware 12.0, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2008-045-01. The text itself is copyright C Slackwa...

Fedora 7 : httpd-2.2.8-1.fc7 (2008-1711)

Notes: This update includes the latest release of httpd 2.2, which fixes a number of minor security issues and other bugs. A flaw was found in the modimagemap module. On sites where modimagemap was enabled and an imagemap file was publicly available, a cross-site scripting attack was possible...

Fedora 8 : httpd-2.2.8-1.fc8 (2008-1695)

This update includes the latest release of httpd 2.2, which fixes a number of minor security issues and other bugs. A flaw was found in the modimagemap module. On sites where modimagemap was enabled and an imagemap file was publicly available, a cross-site scripting attack was possible...

[slackware-security] httpd

New httpd packages are available for Slackware 12.0, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2007-6421 https://vulners.com/cve/CVE-2007-6422...

F5 BIG-IP Web Management Interface Detection

An F5 BIG-IP web management interface is running on this port. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid30215; scriptversion"1.16"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/05/24"; scriptnameenglish:"F5 BIG-IP Web Management Interface...

CVE-2007-6682

Format string vulnerability in the httpdFileCallBack function network/httpd.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via format string specifiers in the Connection parameter...

CVE-2007-6682

Format string vulnerability in the httpdFileCallBack function network/httpd.c in VideoLAN VLC 0.8.6d allows remote attackers to execute arbitrary code via format string specifiers in the Connection parameter...

Debian Security Advisory DSA 935-1 (libapache2-mod-auth-pgsql)

The remote host is missing an update to libapache2-mod-auth-pgsql announced via advisory DSA 935-1. iDEFENSE reports that a format string vulnerability in modauthpgsql, a library used to authenticate web users against a PostgreSQL database, could be used to execute arbitrary code with the...

Debian Security Advisory DSA 525-1 (apache)

The remote host is missing an update to apache announced via advisory DSA 525-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

httpd, mod_ssl security update

CentOS Errata and Security Advisory CESA-2008:0008 Updated Apache httpd packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a...

httpd mod_proxy_balancer cross-site scripting

Cross-site scripting XSS vulnerability in balancer-manager in modproxybalancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the 1 ss, 2 wr, or 3 rr parameters, or 4 the URL...

Moderate: Red Hat Security Advisory: httpd security update

Updated Apache httpd packages that fix several security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A flaw was found in the modimap...

RHEL 4 : httpd (RHSA-2008:0006)

The remote Redhat Enterprise Linux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2008:0006 advisory. The Apache HTTP Server is a popular Web server. A flaw was found in the modimap module. On sites where modimap was enabled and an imagemap...

Moderate: httpd security update

2.0.52-38.ent.2.0.1 - use oracle index page oracleindex.html - updated string and distro in specfile 2.0.52-38.ent.2 - add security fix for CVE-2007-6388 427236 - add security fix for modproxyftp UTF-7 XSS 427743 2.0.52-38.ent.1 - add security fixes for CVE-2007-4465, CVE-2007-5000 421611...