719 matches found
Important: Red Hat Security Advisory: httpd security update
Updated httpd packages that fix multiple security issues are now available for JBoss Enterprise Web Server 1.0.0 for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A...
httpd, mod_ssl security update
CentOS Errata and Security Advisory CESA-2009:1148 Updated httpd packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web...
RHEL 5 : httpd (RHSA-2009:1148)
Updated httpd packages that fix two security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A denial of service flaw was found in the...
Mandriva Linux Security Advisory : apache (MDVSA-2009:149)
Multiple vulnerabilities has been found and corrected in apache : The streamreqbodycl function in modproxyhttp.c in the modproxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length...
Apache mod_proxy反向代理拒绝服务漏洞
BUGTRAQ ID: 35565 CVECAN ID: CVE-2009-1890 Apache HTTP Server是一款流行的Web服务器。 如果配置了反向代理的话,在Apache HTTP Server的modproxy模块中,modproxyhttp.c的streamreqbodycl函数没有正确地处理数量超过了 Content-Length值的流数据。远程攻击者可以通过向受影响的代理进程发送特制的请求导致耗尽大量的CPU资源。 Apache 2.2.x 厂商补丁: Apache Group ------------...
CVE-2009-1890
The streamreqbodycl function in modproxyhttp.c in the modproxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which allows remote attackers to cause a denial of service C...
CVE-2009-1890
The streamreqbodycl function in modproxyhttp.c in the modproxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which allows remote attackers to cause a denial of service C...
CVE-2009-1890
CVE-2009-1890 affects Apache HTTP Server when used as a reverse proxy. The mod_proxy_http.c mechanism can fail to correctly bound a stream when Content-Length is exceeded, causing a denial-of-service via CPU exhaustion from crafted requests. The issue is specific to the reverse-proxy path in mod_...
Apache Httpd < 2.2.12 : mod_proxy reverse proxy DoS
A denial of service flaw was found in the modproxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time...
FreeBSD : apache -- heap overflow in mod_proxy (ca6c8f35-0a5f-11d9-ad6f-00061bc2ad93)
A buffer overflow exists in modproxy which may allow an attacker to launch local DoS attacks and possibly execute arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright...
CentOS 3 / 4 / 5 : httpd (CESA-2008:0967)
Updated httpd packages that resolve several security issues and fix a bug are now available for Red Hat Enterprise Linux 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular Web server. A flaw was foun...
Mandriva Linux Security Advisory : apache (MDVSA-2008:195)
A vulnerability was discovered in the modproxy module in Apache where it did not limit the number of forwarded interim responses, allowing remote HTTP servers to cause a denial of service memory consumption via a large number of interim responses CVE-2008-2364. A cross-site scripting vulnerabilit...
Mandriva Update for apache MDKSA-2007:235 (apache)
Check for the Version of apache OpenVAS Vulnerability Test Mandriva Update for apache MDKSA-2007:235 apache Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Mandriva Update for apache MDVSA-2008:195 (apache)
Check for the Version of apache OpenVAS Vulnerability Test Mandriva Update for apache MDVSA-2008:195 apache Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
openSUSE 10 Security Update : apache2 (apache2-6054)
A DoS condition in apache2's modproxy has been fixed. CVE-2008-2364 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update apache2-6054. The text description of this...
RedHat Update for httpd RHSA-2008:0967-01
Check for the Version of httpd OpenVAS Vulnerability Test RedHat Update for httpd RHSA-2008:0967-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
RedHat Update for httpd RHSA-2008:0967-01
Check for the Version of httpd OpenVAS Vulnerability Test RedHat Update for httpd RHSA-2008:0967-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
CentOS Update for httpd CESA-2008:0005 centos3 x86_64
Check for the Version of httpd OpenVAS Vulnerability Test CentOS Update for httpd CESA-2008:0005 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
CentOS Update for httpd CESA-2008:0005 centos3 i386
Check for the Version of httpd OpenVAS Vulnerability Test CentOS Update for httpd CESA-2008:0005 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
CentOS Update for httpd CESA-2008:0967 centos3 x86_64
Check for the Version of httpd OpenVAS Vulnerability Test CentOS Update for httpd CESA-2008:0967 centos3 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...