RedHat Update for httpd RHSA-2010:0168-01

Check for the Version of httpd OpenVAS Vulnerability Test RedHat Update for httpd RHSA-2010:0168-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

Debian DSA-1834-1 : apache2 - denial of service

CVE-2009-1890 A denial of service flaw was found in the Apache modproxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time. This issue did not affect Debian 4.0 'etch'. - CVE-2009-1891 A denial of service...

Apache 1.3.x < 1.3.42 mod_proxy Integer Overflow

According to its banner, the version of Apache 1.3.x running on the remote host is prior 1.3.42. It is, therefore, potentially affected by an integer overflow vulnerability in the modproxy Apache module. A remote attacker can exploit this to cause a denial of service condition or to execute...

Integer overflow

Integer overflow in the approxysendfb function in proxy/proxyutil.c in modproxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service daemon crash or possibly execute arbitrary code via a large chunk size that triggers a heap-based...

CVE-2010-0010

Integer overflow in the approxysendfb function in proxy/proxyutil.c in modproxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service daemon crash or possibly execute arbitrary code via a large chunk size that triggers a heap-based...

CVE-2010-0010

The CVE-2010-0010 issue affects Apache HTTP Server’s mod_proxy (proxy_util.c) on 64-bit platforms. The root cause is an integer overflow in the ap_proxy_send_fb function when handling large chunk sizes, which can trigger a heap-based buffer overflow. This condition enables a remote origin server ...

Apache mod_proxy模块HTTP分块编码整数溢出漏洞

BUGTRAQ ID: 37966 CVECAN ID: CVE-2010-0010 Apache HTTP Server是一款流行的Web服务器。 Apache服务器的modproxy模块在执行字符类型转换时存在最终可导致堆溢出的整数溢出漏洞。以下是有漏洞的代码段： "./src/modules/proxy/proxyutil.c" long int approxysendfbBUFF f, requestrec r, cachereq c, offt len, int nowrite, int chunked, sizet recvbuffersize ... sizet...

Mod_proxy From Apache 1.3 Integer Overflow

Name: Modproxy from apache 1.3 - Integer overflow which causes heap overflow. Author: Adam Zabrocki or Date: Jan 27, 2010 Issue: Modproxy from apache 1.3.xx tested on latest version - 1.3.41 allows local and remote attackers to overflow buffer on heap via integer overflow vulnerability...

Mod_proxy from apache 1.3 - Integer overflow which causes heap overflow.

Name: Modproxy from apache 1.3 - Integer overflow which causes heap overflow. Author: Adam Zabrocki [email protected] or [email protected] Date: Jan 27, 2010 Issue: Modproxy from apache 1.3.xx tested on latest version - 1.3.41 allows local and remote attackers to overflow buffer on heap via integer...

Apache mod_proxy integer overflow

Integer overflow leading to heap overflow on server reply chunked encoding parsing...

CentOS 5 : httpd (CESA-2009:1148)

Updated httpd packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A denial of service flaw was found in the...

Apache Httpd < 1.3.42 : mod_proxy overflow on 64-bit systems

An incorrect conversion between numeric types flaw was found in the modproxy module which affects some 64-bit architecture systems. A malicious HTTP server to which requests are being proxied could use this flaw to trigger a heap buffer overflow in an httpd child process via a carefully crafted...

apache mod_proxy 拒绝服务漏洞

No description provided by source...

openSUSE 10 Security Update : apache2 (apache2-6576)

This update of the Apache webserver fixes various security issues : - the option IncludesNOEXEC could be bypassed via .htaccess CVE-2009-1195 - modproxy could run into an infinite loop when used as reverse proxy CVE-2009-1890 - moddeflate continued to compress large files even after a network...

SuSE Security Advisory SUSE-SA:2009:050 (apache2,libapr1)

The remote host is missing updates announced in advisory SUSE-SA:2009:050. OpenVAS Vulnerability Test $Id: susesa2009050.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:050 apache2,libapr1 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

SuSE 10 Security Update : Apache 2 (ZYPP Patch Number 6571)

This update of the Apache webserver fixes various security issues : - the option IncludesNOEXEC could be bypassed via .htaccess. CVE-2009-1195 - modproxy could run into an infinite loop when used as reverse proxy. CVE-2009-1890 - moddeflate continued to compress large files even after a network...

SuSE9 Security Update : Apache 2 (YOU Patch Number 12526)

This update of the Apache webserver fixes various security issues : - modproxy could run into an infinite loop when used as reverse proxy. CVE-2009-1890 - moddeflate continued to compress large files even after a network connection was closed, causing moddeflate to consume large amounts of CPU...

SuSE 11 Security Update : Apache 2 (SAT Patch Number 1417)

This update of the Apache webserver fixes various security issues : - the option IncludesNOEXEC could be bypassed via .htaccess. CVE-2009-1195 - modproxy could run into an infinite loop when used as reverse proxy. CVE-2009-1890 - moddeflate continued to compress large files even after a network...

FreeBSD Ports: apache

The remote host is missing an update to the system as announced in the referenced advisory. VID e15f2356-9139-11de-8f42-001aa0166822 OpenVAS Vulnerability Test $ Description: Auto generated from VID e15f2356-9139-11de-8f42-001aa0166822 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

FreeBSD Ports: apache

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...