5 matches found
FreeBSD -- Resource exhaustion due to sessions stuck in LAST_ACK state
Problem Description: TCP connections transitioning to the LASTACK state can become permanently stuck due to mishandling of protocol state in certain situations, which in turn can lead to accumulated consumption and eventual exhaustion of system resources, such as mbufs and sockets. Impact: An...
CVE-2004-1063
PHP 4.x to 4.3.9, and PHP 5.x to 5.0.2, when running in safe mode on a multithreaded Unix webserver, allows local users to bypass safemodeexecdir restrictions and execute commands outside of the intended safemodeexecdir via shell metacharacters in the current directory name. NOTE: this issue was...
ACME Labs thttpd 2.20 - Cross-Site Scripting
ACME Labs thttpd 2.20 - Cross-Site Scripting source: https://www.securityfocus.com/bid/4601/info thttpd is a web server product maintained by ACME Labs. thttpd has been compiled for Linux, BSD and Solaris, as well as other Unix like operating systems. Cross Site Scripting issues has been reported...
ghttpd 1.4 - Daemon Buffer Overflow
ghttpd 1.4 - Daemon Buffer Overflow // source: https://www.securityfocus.com/bid/2879/info ghttpd is a freely available, open source web server for Unix systems. ghttpd supports CGI and is easy to configure and use. A buffer overflow is known to exist in ghttp which will allow arbitrary code to b...
ghttpd 1.4 - Daemon Buffer Overflow
// source: https://www.securityfocus.com/bid/2879/info ghttpd is a freely available, open source web server for Unix systems. ghttpd supports CGI and is easy to configure and use. A buffer overflow is known to exist in ghttp which will allow arbitrary code to be executed with the privileges of th...