Lucene search
K

179 matches found

NVD
NVD
added 2007/06/20 10:30 p.m.24 views

CVE-2007-3304

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the workerscore and processscore arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer."...

4.7CVSS6.2AI score0.03298EPSS
Exploits2References92
CVE
CVE
added 2007/06/20 10:0 p.m.179 views

CVE-2007-3304

CVE-2007-3304 affects Apache HTTP Server (httpd) with the Prefork MPM. The issue arises when a local attacker can modify the scoreboard arrays (worker_score and process_score) to reference another process, enabling the master process to send SIGUSR1 and terminate that process, potentially causing...

4.7CVSS6.2AI score0.03298EPSS
Exploits2References92Affected Software1
Debian CVE
Debian CVE
added 2007/06/20 10:0 p.m.42 views

CVE-2007-3304

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the workerscore and processscore arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer."...

4.7CVSS6.2AI score0.03298EPSS
Exploits2
securityvulns
securityvulns
added 2007/06/20 12:0 a.m.76 views

Apache Prefork MPM vulnerabilities - Report

----- Apache Prefork MPM vulnerabilities ---------------------------------- PSNC Security Team http://security.psnc.pl/files/apachereport.pdf 1. Introduction This small case study is a result of source code analysis of Apache httpd server MPM modules. The main goal of this document is to show, wh...

7.2AI score
Exploits0
NVD
NVD
added 2007/03/23 12:19 a.m.26 views

CVE-2007-1613

Directory traversal vulnerability in view.php in MPM Chat 2.5 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the logi parameter...

7.5CVSS7.1AI score0.02421EPSS
Exploits1References5
Prion
Prion
added 2007/03/23 12:19 a.m.19 views

Directory traversal

Directory traversal vulnerability in view.php in MPM Chat 2.5 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the logi parameter...

7.5CVSS7.6AI score0.02421EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2007/03/23 12:0 a.m.29 views

CVE-2007-1613

Directory traversal vulnerability in view.php in MPM Chat 2.5 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the logi parameter...

7.1AI score0.02421EPSS
Exploits1References5
CVE
CVE
added 2007/03/23 12:0 a.m.53 views

CVE-2007-1613

CVE-2007-1613 affects MPM Chat 2.5, exposing a directory traversal vulnerability in view.php. The flaw allows remote attackers to include and execute arbitrary local files by inserting .. into the logi parameter. Affected component is the view.php handler within MPM Chat 2.5; root cause is inadeq...

7.5CVSS7.1AI score0.02421EPSS
Exploits1References5Affected Software1
securityvulns
securityvulns
added 2007/03/17 12:0 a.m.69 views

MPM Chat 2.5 (view.php logi) Local File Include Exploit

MPM Chat 2.5 view.php logi Local File Include Exploit D.Script: http://mpm.pahviloota.net/mpmchat25.zip Discovered by: GloDM = Mahmoodali Homepage: http://www.Tryag.cc Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group V.Code ?php if $logi != '' include 'archive/' . $logi; Exploit:...

Exploits0
exploitpack
exploitpack
added 2007/03/17 12:0 a.m.21 views

MPM Chat 2.5 - view.php?logi Local File Inclusion

MPM Chat 2.5 - view.php?logi Local File Inclusion MPM Chat 2.5 view.php logi Local File Include Exploit D.Script: http://mpm.pahviloota.net/mpmchat25.zip Discovered by: GloDM = Mahmoodali Homepage: http://www.Tryag.cc Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group V.Code ?php if $logi...

Exploits0
0day.today
0day.today
added 2007/03/17 12:0 a.m.21 views

MPM Chat 2.5 (view.php logi) Local File Include Vulnerability

Exploit for unknown platform in category web applications ============================================================= MPM Chat 2.5 view.php logi Local File Include Vulnerability ============================================================= MPM Chat 2.5 view.php logi Local File Include Exploit...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/03/17 12:0 a.m.25 views

MPM Chat 2.5 (view.php logi) Local File Include Vulnerability

No description provided by source. MPM Chat 2.5 view.php logi Local File Include Exploit D.Script: http://mpm.pahviloota.net/mpmchat25.zip Discovered by: GloDM = Mahmoodali Homepage: http://www.Tryag.cc Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group V.Code ?php if $logi != '' include...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/17 12:0 a.m.38 views

MPM Chat 2.5 - 'view.php?logi' Local File Inclusion

MPM Chat 2.5 view.php logi Local File Include Exploit D.Script: http://mpm.pahviloota.net/mpmchat25.zip Discovered by: GloDM = Mahmoodali Homepage: http://www.Tryag.cc Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group V.Code ?php if $logi != '' include 'archive/' . $logi; Exploit:...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/07/03 12:0 a.m.37 views

CentOS 3 / 4 : httpd (CESA-2006:0159)

Updated Apache httpd packages that correct three security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Apache HTTP Server is a popular and freely-available Web server. A memo...

5.4CVSS6.4AI score0.73692EPSS
Exploits1References9
Cvelist
Cvelist
added 2006/01/22 8:0 p.m.21 views

CVE-2006-0360

MPM SIP HP-180W Wireless IP Phone WE.00.17 allows remote attackers to obtain sensitive information and possibly cause a denial of service via a direct connection to UDP port 9090, which is undocumented and does not require authentication...

6.7AI score0.01735EPSS
Exploits0References4
securityvulns
securityvulns
added 2006/01/17 12:0 a.m.36 views

[Full-disclosure] MPM HP-180W VoIP wireless desktop phone undocumented port UDP/9090

I disclosed the following issue at ShmooCon 2006 http://www.shmoocon.org/ during my "VoIP Wireless Phone Security Analysis" presentation. Thanks, --scm =============================================================== DATE: 16 January, 2006 VENDOR: MPM - http://www.mpn.com.tw VENDOR NOTIFIED: 7...

0.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2006/01/05 3:59 p.m.7 views

security flaw

Memory leak in the worker MPM worker.c for Apache 2, in certain circumstances, allows remote attackers to cause a denial of service memory consumption via aborted connections, which prevents the memory for the transaction pool from being reused for other connections...

5CVSS5.9AI score0.1419EPSS
Exploits0References4
Apache Httpd
Apache Httpd
added 2005/12/05 12:0 a.m.44 views

Apache Httpd < 2.2.2 : mod_ssl access control DoS

A NULL pointer dereference flaw in modssl was discovered affecting server configurations where an SSL virtual host is configured with access control and a custom 400 error document. A remote attacker could send a carefully crafted request to trigger this issue which would lead to a crash. This...

5.4CVSS1.6AI score0.24286EPSS
Exploits1Affected Software1
EUVD
EUVD
added 2005/10/25 4:0 a.m.5 views

EUVD-2005-2970

Memory leak in the worker MPM worker.c for Apache 2, in certain circumstances, allows remote attackers to cause a denial of service memory consumption via aborted connections, which prevents the memory for the transaction pool from being reused for other connections...

5CVSS6.2AI score0.1419EPSS
Exploits0References30
CVE
CVE
added 2005/10/25 4:0 a.m.104 views

CVE-2005-2970

CVE-2005-2970 is described across multiple advisories as a memory-leak vulnerability in the Apache httpd worker MPM (worker.c). In affected setups, memory consumed by aborted connections could not be freed for new requests, enabling a remote attacker to trigger a Denial of Service via memory exha...

5CVSS6.2AI score0.1419EPSS
Exploits0References28Affected Software1
Rows per page
Query Builder