Lucene search

K
ApacheHttp Server1.3.17

5 matches found

CVE
CVE
added 2005/04/21 4:0 a.m.176 views

CVE-2004-1082

mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials.

7.5CVSS8.1AI score0.05469EPSS
CVE
CVE
added 2005/07/14 4:0 a.m.83 views

CVE-2002-2029

PHP, when installed on Windows with Apache and ScriptAlias for /php/ set to c:/php/, allows remote attackers to read arbitrary files and possibly execute arbitrary programs via an HTTP request for php.exe with a filename in the query string.

7.5CVSS7.3AI score0.71043EPSS
CVE
CVE
added 2005/04/27 4:0 a.m.66 views

CVE-2002-1658

Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow attackers to execute arbitrary code via a long user argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation of privileges, unless htd...

4.6CVSS8.3AI score0.00202EPSS
CVE
CVE
added 2005/08/05 4:0 a.m.61 views

CVE-2002-2103

Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities.

5CVSS6.7AI score0.02317EPSS
CVE
CVE
added 2005/04/21 4:0 a.m.49 views

CVE-2001-1449

The default installation of Apache before 1.3.19 on Mandrake Linux 7.1 through 8.0 and Linux Corporate Server 1.0.1 allows remote attackers to list the directory index of arbitrary web directories.

7.5CVSS6.8AI score0.05425EPSS