Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apache http server 1.3.19 vulnerabilities and exploits

(subscribe to this query)

5
CVSSv2
CVE-2001-1342
Apache before 1.3.20 on Windows and OS/2 systems allows remote attackers to cause a denial of service (GPF) via an HTTP request for a URI that contains a large number of / (slash) or other characters, which causes certain functions to dereference a null pointer....
Apache Http Server 1.3.12Apache Http Server 1.3.14Apache Http Server 1.3.15Apache Http Server 1.3.16Apache Http Server 1.3.17Apache Http Server 1.3.18Apache Http Server 1.3.19
5
CVSSv2
CVE-2001-1072
Apache with mod_rewrite enabled on most UNIX systems allows remote attackers to bypass RewriteRules by inserting extra / (slash) characters into the requested path, which causes the regular expression in the RewriteRule to fail....
Apache Http Server 1.3.14Apache Http Server 1.3.17Apache Http Server 1.3.19
2.1
CVSSv2
CVE-2001-1534
mod_usertrack in Apache 1.3.11 through 1.3.20 generates session ID's using predictable information including host IP address, system time and server process ID, which allows local users to obtain session ID's and bypass authentication when these session ID's are...
Apache Http Server 1.3.11Apache Http Server 1.3.12Apache Http Server 1.3.14Apache Http Server 1.3.17Apache Http Server 1.3.18Apache Http Server 1.3.19Apache Http Server
7.2
CVSSv2
CVE-2002-0839
The shared memory scoreboard in the HTTP daemon for Apache 1.3.x before 1.3.27 allows any user running as the Apache UID to send a SIGUSR1 signal to any process as root, resulting in a denial of service (process kill) or possibly other behaviors that would not normally be...
Apache Http Server 1.3.19Apache Http Server 1.3.20Apache Http Server 1.3.22Apache Http Server 1.3.23Apache Http Server 1.3.24Apache Http Server 1.3.25Apache Http Server 1.3.26
5
CVSSv2
CVE-2002-2012
Unknown vulnerability in Apache 1.3.19 running on HP Secure OS for Linux 1.0 allows remote attackers to cause "unexpected results" via an HTTP request....
Apache Http Server 1.3.19
7.5
CVSSv2
CVE-2002-0257
Cross-site scripting vulnerability in auction.pl of MakeBid Auction Deluxe 3.30 allows remote attackers to obtain information from other users via the form fields (1) TITLE, (2) DESCTIT, (3) DESC, (4) searchstring, (5) ALIAS, (6) EMAIL, (7) ADDRESS1, (8) ADDRESS2, (9) ADDRESS3,...
Apache Http Server 1.3.17Apache Http Server 1.3.18Apache Http Server 1.3.19Apache Http Server 1.3.20Apache Http Server 1.3.22Usanet Creations Makebid Auction Deluxe 3.30
2.6
CVSSv2
CVE-2002-1233
A regression error in the Debian distributions of the apache-ssl package (before 1.3.9 on Debian 2.2, and before 1.3.26 on Debian 3.0), for Apache 1.3.27 and earlier, allows local users to read or modify the Apache password file via a symlink attack on temporary files when the...
Apache Http Server 1.3.17Apache Http Server 1.3.18Apache Http Server 1.3.19Apache Http Server 1.3.20Apache Http Server 1.3.22Apache Http Server 1.3.23Apache Http Server 1.3.24Apache Http Server 1.3.25Apache Http Server 1.3.26Apache Http Server 1.3.27
7.5
CVSSv2
CVE-2002-2029
PHP, when installed on Windows with Apache and ScriptAlias for /php/ set to c:/php/, allows remote attackers to read arbitrary files and possibly execute arbitrary programs via an HTTP request for php.exe with a filename in the query string....
Apache Http Server 1.3.11Apache Http Server 1.3.12Apache Http Server 1.3.13Apache Http Server 1.3.14Apache Http Server 1.3.15Apache Http Server 1.3.16Apache Http Server 1.3.17Apache Http Server 1.3.18Apache Http Server 1.3.19Apache Http Server 1.3.20
5
CVSSv2
CVE-2002-2103
Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities....
Apache Http Server 1.3.9Apache Http Server 1.3.11Apache Http Server 1.3.12Apache Http Server 1.3.13Apache Http Server 1.3.14Apache Http Server 1.3.15Apache Http Server 1.3.16Apache Http Server 1.3.17Apache Http Server 1.3.18Apache Http Server 1.3.19Apache Http Server 1.3.20Apache Http Server 1.3.22Apache Http Server 1.3.23
5
CVSSv2
CVE-2004-0263
PHP 4.3.4 and earlier in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote attackers to obtain sensitive information....
Apache Http Server 1.0Apache Http Server 1.0.2Apache Http Server 1.0.3Apache Http Server 1.0.5Apache Http Server 1.1Apache Http Server 1.1.1Apache Http Server 1.2Apache Http Server 1.2.5Apache Http Server 1.3Apache Http Server 1.3.1Apache Http Server 1.3.3Apache Http Server 1.3.4Apache Http Server 1.3.6Apache Http Server 1.3.7Apache Http Server 1.3.9Apache Http Server 1.3.11Apache Http Server 1.3.12Apache Http Server 1.3.14Apache Http Server 1.3.17Apache Http Server 1.3.18Apache Http Server 1.3.19Apache Http Server 1.3.20Apache Http Server 1.3.22Apache Http Server 1.3.23Apache Http Server 1.3.24Apache Http Server 1.3.25Apache Http Server 1.3.26Apache Http Server 1.3.27Apache Http Server 1.3.28Apache Http Server 1.3.29Apache Http Server 2.0Apache Http Server 2.0.9Apache Http Server 2.0.28Apache Http Server 2.0.32Apache Http Server 2.0.35Apache Http Server 2.0.36Apache Http Server 2.0.37Apache Http Server 2.0.38Apache Http Server 2.0.39Apache Http Server 2.0.40Apache Http Server 2.0.41Apache Http Server 2.0.42Apache Http Server 2.0.43Apache Http Server 2.0.44Apache Http Server 2.0.45Apache Http Server 2.0.46Apache Http Server 2.0.47Apache Http Server 2.0.48Ibm Http Server 1.3.19
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
arbitrary codeCVE-2020-36079microfocusCVE-2021-26561CVE-2021-21972NULL pointer dereferenceCVE-2021-25281deserializationsolutions business managerCVE-2020-28243CVE-2020-27618