5769 matches found
Fedora 7 : httpd-2.2.6-1.fc7 (2007-2214)
This update includes the latest stable release of the Apache HTTP Server. A flaw was found in the Apache HTTP Server modproxy module. On sites where a reverse proxy is configured, a remote attacker could send a carefully crafted request that would cause the Apache child process handling that...
CVE-2002-2317
Memory leak in the 1 httpd, 2 nntpd, and 3 vpn driver in VelociRaptor 1.0 allows remote attackers to cause a denial of service memory consumption via an unknown method...
CVE-2002-2317
CVE-2002-2317 concerns VelociRaptor 1.0, indicating a memory leak in three components: httpd, nntpd, and the vpn driver. The underlying issue is a memory consumption DoS that can be triggered by remote attackers using an unknown method. Referenced sources (NVD, Red Hat, CVE listings) confirm the ...
Moderate: Red Hat Security Advisory: httpd security update
Updated httpd packages that fix two security issues are now available for Red Hat Application Stack. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular and freely-available Web server. A flaw was found in the...
Apache Httpd < 2.0.63 : mod_imagemap XSS
A flaw was found in the modimagemap module. On sites where modimagemap is enabled and an imagemap file is publicly available, a cross-site scripting attack is possible...
Apache Httpd < 2.2.8 : mod_imagemap XSS
A flaw was found in the modimagemap module. On sites where modimagemap is enabled and an imagemap file is publicly available, a cross-site scripting attack is possible...
Apache Httpd < 1.3.41 : mod_imagemap XSS
A flaw was found in the modimagemap module. On sites where modimagemap is enabled and an imagemap file is publicly available, a cross-site scripting attack is possible...
Apache Httpd < 2.2.9 : mod_proxy_balancer CSRF
The modproxybalancer provided an administrative interface that could be vulnerable to cross-site request forgery CSRF attacks...
[EXPL] Airsensor M520 HTTPD Preauth DoS and Buffer Overflow (Exploit)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
Fedora Core 6 : httpd-2.2.6-1.fc6 (2007-707)
This update includes the latest release of httpd, fixing two security issues. A flaw was found in the modproxy module. On sites where a reverse proxy is configured, a remote attacker could send a carefully crafted request that would cause the Apache child process handling that request to crash. O...
Airsensor M520 HTTPD Remote Preauth DoS / BOF PoC
No description provided by source. !/usr/bin/perl -w Airsensor M520 HTTPD Remote Preauth Denial Of Service and Buffer Overflow PoC The vulnerability is caused due to an unspecified error in the cgis files filter used for configure propierties. This can be exploited by sending a specially crafted...
Airsensor M520 HTTPD Remote Preauth DoS / BOF PoC
Exploit for hardware platform in category dos / poc ================================================= Airsensor M520 HTTPD Remote Preauth DoS / BOF PoC ================================================= !/usr/bin/perl -w Airsensor M520 HTTPD Remote Preauth Denial Of Service and Buffer Overflow PoC...
Airsensor M520 - HTTPd Remote Denial of Service / Buffer Overflow (PoC)
!/usr/bin/perl -w Airsensor M520 HTTPD Remote Preauth Denial Of Service and Buffer Overflow PoC The vulnerability is caused due to an unspecified error in the cgis files filter used for configure propierties. This can be exploited by sending a specially crafted HTTPS request necessary...
Airsensor M520 - HTTPd Remote Denial of Service Buffer Overflow (PoC)
Airsensor M520 - HTTPd Remote Denial of Service Buffer Overflow PoC !/usr/bin/perl -w Airsensor M520 HTTPD Remote Preauth Denial Of Service and Buffer Overflow PoC The vulnerability is caused due to an unspecified error in the cgis files filter used for configure propierties. This can be exploite...
Alcatel-Lucent OmniPCX Enterprise Communication Server 7.1 - masterCGI Command Injection (Metasploit)
Alcatel-Lucent OmniPCX Enterprise Communication Server 7.1 - masterCGI Command Injection Metasploit $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing a...
Alcatel-Lucent OmniPCX Enterprise 7.1 - Remote Command Execution
Alcatel-Lucent OmniPCX Enterprise 7.1 - Remote Command Execution source: https://www.securityfocus.com/bid/25694/info Alcatel-Lucent OmniPCX Enterprise is prone to a remote command-execution vulnerability because it fails to adequately sanitize user-supplied data. Attackers can exploit this issue...
Alcatel-Lucent OmniPCX Enterprise Communication Server <= 7.1 masterCGI Command Injection
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...
[Full-disclosure] rPSA-2007-0182-1 httpd mod_ssl
rPath Security Advisory: 2007-0182-1 Published: 2007-09-14 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Remote System User Deterministic Denial of Service Updated Versions: httpd=/conary.rpath.com@rpl:devel//1-devel/2.0.61-0.1-1...
corehttp 0.5.3alpha (httpd) Remote Buffer Overflow Exploit
No description provided by source. / corehttpv0.5.3alpha: httpd remote buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo ...
CoreHTTP 0.5.3alpha - HTTPd Remote Buffer Overflow
CoreHTTP 0.5.3alpha - HTTPd Remote Buffer Overflow / corehttpv0.5.3alpha: httpd remote buffer overflow exploit. by: vade79/v9 [email protected] fakehalo/realhalo compile: gcc xcorehttp.c -o xcorehttp syntax: ./xcorehttp -r -h host -p port corehttp homepage/url: http://corehttp.sourceforge.net/...