Http Server@2.2.9 Security Vulnerabilities and Issues — Http Server@2.2.9 CVE List

Lucene search

ApacheHttp Server2.2.9

4 matches found

CVE•added 2010/03/05 7:30 p.m.•5822 views

CVE-2010-0425

modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which allows remote attackers...

10CVSS9.4AI score0.86822EPSS

CVE•added 2010/03/05 4:30 p.m.•756 views

CVE-2010-0408

The ap_proxy_ajp_request function in mod_proxy_ajp.c in mod_proxy_ajp in the Apache HTTP Server 2.2.x before 2.2.15 does not properly handle certain situations in which a client sends no request body, which allows remote attackers to cause a denial of service (backend server outage) via a crafted r...

5CVSS8.9AI score0.25072EPSS

CVE•added 2010/06/18 4:30 p.m.•565 views

CVE-2010-2068

mod_proxy_http.c in mod_proxy_http in the Apache HTTP Server 2.2.9 through 2.2.15, 2.3.4-alpha, and 2.3.5-alpha on Windows, NetWare, and OS/2, in certain configurations involving proxy worker pools, does not properly detect timeouts, which allows remote attackers to obtain a potentially sensitive r...

5CVSS4.9AI score0.08537EPSS

CVE•added 2010/08/05 6:17 p.m.•108 views

CVE-2010-2791

mod_proxy in httpd in Apache HTTP Server 2.2.9, when running on Unix, does not close the backend connection if a timeout occurs when reading a response from a persistent connection, which allows remote attackers to obtain a potentially sensitive response intended for a different client in opportuni...

5CVSS6.1AI score0.08537EPSS