Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache http server 1.3.9 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2000-1204
Vulnerability in the mod_vhost_alias virtual hosting module for Apache 1.3.9, 1.3.11 and 1.3.12 allows remote malicious users to obtain the source code for CGI programs if the cgi-bin directory is under the document root.
Apache Http Server 1.3.12
Apache Http Server 1.3.9
Apache Http Server 1.3.11
5
CVSSv2
CVE-2000-1206
Vulnerability in Apache httpd prior to 1.3.11, when configured for mass virtual hosting using mod_rewrite, or mod_vhost_alias in Apache 1.3.9, allows remote malicious users to retrieve arbitrary files.
Apache Http Server 1.3.10
Apache Http Server 1.3.9
5
CVSSv2
CVE-2000-0505
The Apache 1.3.x HTTP server for Windows platforms allows remote malicious users to list directory contents by requesting a URL containing a large number of / characters.
Apache Http Server 1.3.9
Apache Http Server 1.3.11
Ibm Http Server 1.3.3
Ibm Http Server 1.3.6.2
Apache Http Server 1.3.6
Apache Http Server 1.3.12
1 EDB exploit
4.3
CVSSv2
CVE-2000-1205
Cross site scripting vulnerabilities in Apache 1.3.0 up to and including 1.3.11 allow remote malicious users to execute script as other web site visitors via (1) the printenv CGI (printenv.pl), which does not encode its output, (2) pages generated by the ap_send_error_response fu...
Apache Http Server 1.3.10
Apache Http Server 1.3.8
Apache Http Server 1.3.1
Apache Http Server 1.3.5
Apache Http Server 1.3.6
Apache Http Server 1.3.2
Apache Http Server 1.3.4
Apache Http Server 1.3.0
Apache Http Server 1.3.3
Apache Http Server 1.3.9
Apache Http Server 1.3.11
Apache Http Server 1.3.7
5
CVSSv2
CVE-2002-2103
Apache prior to 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote malicious users to hide the original source of activities.
Apache Http Server 1.3.23
Apache Http Server 1.3.16
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.13
Apache Http Server 1.3.18
Apache Http Server 1.3.12
Apache Http Server 1.3.17
Apache Http Server 1.3.9
Apache Http Server 1.3.15
Apache Http Server 1.3.14
Apache Http Server 1.3.22
Apache Http Server 1.3.11
4.6
CVSSv2
CVE-2002-1658
Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow malicious users to execute arbitrary code via a long user argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation ...
Apache Http Server 1.3.23
Apache Http Server 1.3.27
Apache Http Server 1.3.1
Apache Http Server 1.3.25
Apache Http Server 1.3.19
Apache Http Server 1.3.24
Apache Http Server 1.3.20
Apache Http Server 1.3.6
Apache Http Server 1.3.4
Apache Http Server 1.3.18
Apache Http Server 1.3.12
Apache Http Server 1.3.3
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server 1.3.9
Apache Http Server 1.3.14
Apache Http Server 1.3.22
Apache Http Server 1.3.11
7.5
CVSSv2
CVE-2003-0993
mod_access in Apache 1.3 prior to 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote malicious users to bypass intended access restrictions.
Apache Http Server 1.3.23
Apache Http Server 1.3.27
Apache Http Server 1.3.1
Apache Http Server 1.3.25
Apache Http Server 1.3.28
Apache Http Server 1.3.19
Apache Http Server 1.3.24
Apache Http Server 1.3.20
Apache Http Server 1.3.7
Apache Http Server 1.3.6
Apache Http Server 1.3.4
Apache Http Server 1.3.18
Apache Http Server 1.3
Apache Http Server 1.3.12
Apache Http Server 1.3.3
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server 1.3.9
Apache Http Server 1.3.14
Apache Http Server 1.3.29
Apache Http Server 1.3.22
Apache Http Server 1.3.11
7.5
CVSSv2
CVE-2001-1449
The default installation of Apache prior to 1.3.19 on Mandrake Linux 7.1 up to and including 8.0 and Linux Corporate Server 1.0.1 allows remote malicious users to list the directory index of arbitrary web directories.
Apache Http Server 1.3.1
Apache Http Server 1.3.6
Apache Http Server 1.3.4
Apache Http Server 1.3.18
Mandrakesoft Mandrake Single Network Firewall 7.2
Apache Http Server 1.3
Apache Http Server 1.3.12
Apache Http Server 1.3.3
Apache Http Server 1.3.17
Apache Http Server 1.3.9
Apache Http Server 1.3.14
Apache Http Server 1.3.11
Mandrakesoft Mandrake Linux Corporate Server 1.0.1
Mandrakesoft Mandrake Linux 7.1
Mandrakesoft Mandrake Linux 7.3
Mandrakesoft Mandrake Linux 8.0
7.5
CVSSv2
CVE-1999-1053
guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote malicious users to execute arbitrary commands when guestbook.pl is run on Apache 1.3.9 and possibly other versions, since Apache al...
Matt Wright Matt Wright Guestbook 2.3
Apache Http Server 1.3.9
2 EDB exploits
1 Github repository
7.2
CVSSv2
CVE-2003-0542
Multiple stack-based buffer overflows in (1) mod_alias and (2) mod_rewrite for Apache prior to 1.3.29 allow malicious users to create configuration files to cause a denial of service (crash) or execute arbitrary code via a regular expression with more than 9 captures.
Apache Http Server 2.0.42
Apache Http Server 1.3.23
Apache Http Server 2.0.47
Apache Http Server 1.3.27
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 1.3.1
Apache Http Server 1.3.25
Apache Http Server 1.3.28
Apache Http Server 1.3.19
Apache Http Server 2.0.39
Apache Http Server 1.3.24
Apache Http Server 1.3.20
Apache Http Server 1.3.6
Apache Http Server 2.0.41
Apache Http Server 1.3.4
Apache Http Server 1.3.18
Apache Http Server 2.0.32
Apache Http Server 2.0.38
Apache Http Server 1.3
Apache Http Server 1.3.12
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38380
wireless
CVE-2024-8190
CVE-2024-45811
unauthorized
CVE-2024-8946
physical
CVE-2024-8503
CVE-2024-47049
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »