Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
apache http server 1.3.27 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2003-1418
Apache HTTP Server 1.3.22 through 1.3.27 on OpenBSD allows remote attackers to obtain sensitive information via (1) the ETag header, which reveals the inode number, or (2) multipart MIME boundary, which reveals child process IDs (PID)....
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.22
Apache Http Server 1.3.23
1 Github repository available
2.6
CVSSv2
CVE-2002-1233
A regression error in the Debian distributions of the apache-ssl package (before 1.3.9 on Debian 2.2, and before 1.3.26 on Debian 3.0), for Apache 1.3.27 and earlier, allows local users to read or modify the Apache password file via a symlink attack on temporary files when the...
Apache Http Server 1.3.20
Apache Http Server 1.3.25
Apache Http Server 1.3.19
Apache Http Server 1.3.24
Apache Http Server 1.3.17
Apache Http Server 1.3.22
Apache Http Server 1.3.26
Apache Http Server 1.3.18
Apache Http Server 1.3.23
Apache Http Server 1.3.27
4.6
CVSSv2
CVE-2002-1658
Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow attackers to execute arbitrary code via a long user argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation of...
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.6
Apache Http Server 1.3.9
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.3
Apache Http Server 1.3.4
7.5
CVSSv2
CVE-2003-0993
mod_access in Apache 1.3 before 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote attackers to bypass intended access restrictions....
Apache Http Server 1.3
Apache Http Server 1.3.1
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.3
Apache Http Server 1.3.4
Apache Http Server 1.3.18
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.3.24
Apache Http Server 1.3.27
Apache Http Server 1.3.25
Apache Http Server 1.3.28
Apache Http Server 1.3.7
Apache Http Server 1.3.6
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server 1.3.9
Apache Http Server 1.3.14
Apache Http Server 1.3.29
6.8
CVSSv2
CVE-2010-0010
Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size...
Apache Http Server 1.3.38
Apache Http Server 1.3.37
Apache Http Server 1.3.30
Apache Http Server 1.3.3
Apache Http Server 1.3.22
Apache Http Server 1.3.20
Apache Http Server 1.3.13
Apache Http Server 1.3.12
Apache Http Server 1.2.5
Apache Http Server 1.2.4
Apache Http Server 1.3.36
Apache Http Server 1.3.35
Apache Http Server 1.3.27
Apache Http Server 1.3.10
Apache Http Server 1.0.5
Apache Http Server 1.3.33
Apache Http Server 1.3.1
Apache Http Server 1.3.25
Apache Http Server 1.3.28
Apache Http Server 1.3.19
Apache Http Server 1.3.40
Apache Http Server 1.1
Apache Http Server 1.3.2
Apache Http Server 1.3.34
Apache Http Server 1.3.4
Apache Http Server 1.0
Apache Http Server 1.3.39
Apache Http Server 1.3.18
Apache Http Server 1.0.3
Apache Http Server 1.3.0
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server
Apache Http Server 1.3.29
Apache Http Server 1.3.11
Apache Http Server 1.2
Apache Http Server 1.3.23
Apache Http Server 0.8.11
Apache Http Server 1.3.31
Apache Http Server 1.3.24
Apache Http Server 1.3
Apache Http Server 0.8.14
Apache Http Server 1.3.32
Apache Http Server 1.3.15
Apache Http Server 1.3.14
Apache Http Server 1.2.6
5
CVSSv2
CVE-2004-0263
PHP 4.3.4 and earlier in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote attackers to obtain sensitive information....
Apache Http Server 1.0.3
Apache Http Server 1.0.5
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.2
Apache Http Server 1.2.5
Apache Http Server 1.3.18
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Apache Http Server 2.0.28
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.9
Ibm Http Server 1.3.19
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.6
Apache Http Server 1.3.7
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.45
Apache Http Server 2.0.46
Apache Http Server 1.1
Apache Http Server 1.1.1
Apache Http Server 1.3.14
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Http Server 1.3.9
Apache Http Server 2.0
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 1.0
Apache Http Server 1.0.2
Apache Http Server 1.3
Apache Http Server 1.3.1
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.3.3
Apache Http Server 1.3.4
Apache Http Server 2.0.32
Apache Http Server 2.0.35
Apache Http Server 2.0.43
Apache Http Server 2.0.44
7.8
CVSSv2
CVE-2002-2272
Tomcat 4.0 through 4.1.12, using mod_jk 1.2.1 module on Apache 1.3 through 1.3.27, allows remote attackers to cause a denial of service (desynchronized communications) via an HTTP GET request with a Transfer-Encoding chunked field with invalid values....
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.3.13
Apache Http Server 1.3.14
Apache Http Server 1.3.20
Apache Http Server 1.3.22
Apache Tomcat 4.0.2
Apache Tomcat 4.0.3
Apache Tomcat 4.1.12
Apache Tomcat 4.1.2
Apache Http Server 1.3
Apache Http Server 1.3.0
Apache Http Server 1.3.15
Apache Http Server 1.3.16
Apache Http Server 1.3.23
Apache Http Server 1.3.24
Apache Tomcat 4.0.4
Apache Tomcat 4.0.5
Apache Tomcat 4.1.3
Apache Http Server 1.3.19
Apache Http Server 1.3.2
Apache Tomcat 4.0.0
Apache Tomcat 4.0.1
Apache Tomcat 4.1.1
Apache Tomcat 4.1.10
Apache Http Server 1.3.1
Apache Http Server 1.3.10
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.25
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Apache Tomcat 4.0.6
Apache Tomcat 4.1.0
Apache Tomcat 4.1.9
1 EDB exploit available
7.2
CVSSv2
CVE-2003-0542
Multiple stack-based buffer overflows in (1) mod_alias and (2) mod_rewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service (crash) or execute arbitrary code via a regular expression with more than 9 captures....
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.26
Apache Http Server 2.0
Apache Http Server 1.3.17
Apache Http Server 1.3.18
Apache Http Server 1.3.27
Apache Http Server 1.3.28
Apache Http Server 2.0.32
Apache Http Server 2.0.35
Apache Http Server 2.0.42
Apache Http Server 1.3.23
Apache Http Server 2.0.47
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 1.3.1
Apache Http Server 1.3.19
Apache Http Server 2.0.39
Apache Http Server 1.3.20
Apache Http Server 1.3.6
Apache Http Server 2.0.41
Apache Http Server 1.3.4
Apache Http Server 2.0.38
Apache Http Server 1.3
Apache Http Server 1.3.3
Apache Http Server 2.0.45
Apache Http Server 1.3.9
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server 2.0.46
Apache Http Server 1.3.22
Apache Http Server 1.3.11
Apache Http Server 2.0.43
Apache Http Server 2.0.28
10
CVSSv2
CVE-2004-0492
Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be...
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Ibm Http Server 1.3.26.2
Ibm Http Server 1.3.28
Hp Webproxy 2.0
Hp Webproxy 2.1
Apache Http Server 1.3.31
Hp Virtualvault 11.0.4
Sgi Propack 2.4
Apache Http Server 1.3.26
Apache Http Server 1.3.27
Ibm Http Server 1.3.26
Ibm Http Server 1.3.26.1
Hp Vvos 11.04
Openbsd Openbsd
Openbsd Openbsd 3.4
Openbsd Openbsd 3.5
4.3
CVSSv2
CVE-2008-0455
Cross-site scripting (XSS) vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary web...
Apache Http Server 1.3.12
Apache Http Server 1.3.14
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.33
Apache Http Server 1.3.34
Apache Http Server 2.0.28
Apache Http Server 2.0.32
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 1.3.23
Apache Http Server 1.3.27
Apache Http Server 2.0.35
Apache Http Server 1.3.36
Apache Http Server 2.0.44
Apache Http Server 1.3.1
Apache Http Server 1.3.28
Apache Http Server 1.3.31
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 1.3.35
Apache Http Server 2.0.51
Apache Http Server 2.0.9
Apache Http Server 1.3.18
Apache Http Server 2.0.61
Apache Http Server 2.2.6
Apache Http Server 1.3.17
Apache Http Server 2.0.45
Apache Http Server 1.3.26
Apache Http Server 2.0.36
Apache Http Server 1.3.22
Apache Http Server 1.3.11
Apache Http Server 2.0.59
Apache Http Server 2.0.60
Apache Http Server 2.0.58
Apache Http Server 2.2.0
Apache Http Server 2.0.47
Apache Http Server 2.0.56
Apache Http Server 2.2.2
Apache Http Server 2.2.4
Apache Http Server 2.0.37
Apache Http Server 2.0.55
Apache Http Server 1.3.19
Apache Http Server 2.0.39
Apache Http Server 1.3.20
Apache Http Server 2.0.49
Apache Http Server 1.3.39
Apache Http Server 2.0.38
Apache Http Server 1.3
Apache Http Server 2.0.48
Apache Http Server 1.3.3
Apache Http Server 2.0.40
Apache Http Server 1.3.32
Apache Http Server 1.3.29
Apache Http Server 2.2.3
Apache Http Server 2.0.46
Apache Http Server 1.3.37
Apache Http Server 2.0.54
Apache Http Server 2.0
Apache Http Server -
1 EDB exploit available
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-23418
CVE-2021-36934
CVE-2021-32796
remote
CVE-2021-37743
file upload
CVE-2020-10590
log injection
CVE-2021-3490
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »
Vulmon