4 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-25690
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Some modproxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack. Configurations are affected when modprox...
OESA-2023-1161 httpd security update
Apache HTTP Server is a powerful and flexible HTTP/1.1 compliant web server. Security Fixes: HTTP Response Smuggling vulnerability in Apache HTTP Server via modproxyuwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header can...
Vulnerabilities fixed in OpenLDAP
Several vulnerabilities have been fixed in OpenLDAP. The vulnerabilities allow an unauthenticated malicious person with network access to the OpenLDAP server is able to cause a denial-of-service on the OpenLDAP service. Exploit code is publicly available for both vulnerabilities. The operation of...
PT-2020-6566 · Openldap +7 · Openldap +7
Name of the Vulnerable Software and Affected Versions: OpenLDAP versions prior to 2.4.56 Description: A flaw in OpenLDAP allows an attacker to force a failed assertion in the csnNormalize23 function by sending a malicious packet. This can lead to a denial of service, affecting system availability...