apache http server 2.0 vulnerabilities and exploits

(subscribe to this query)

5

CVSSv2

Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote attackers to determine the full pathname of the server via (1) a request for a .var file, which leaks the pathname in the resulting error message, or (2) via an error message that occurs when a script (child...

Apache Http Server 2.0.28 Apache Http Server 2.0.39 Apache Http Server 2.0 Apache Http Server 2.0.37 Apache Http Server 2.0.38 Apache Http Server 2.0.32 Apache Http Server 2.0.34 Apache Http Server 2.0.35 Apache Http Server 2.0.361 EDB exploit available

5

CVSSv2

The ap_log_rerror function in Apache 2.0 through 2.035, when a CGI application encounters an error, sends error messages to the client that include the full path for the server, which allows remote attackers to obtain sensitive information....

Apache Http Server 2.0.32 Apache Http Server 2.0 Apache Http Server 2.0.28 Apache Http Server 2.0.35

5

CVSSv2

mod_dav in Apache before 2.0.42 does not properly handle versioning hooks, which may allow remote attackers to kill a child process via a null dereference and cause a denial of service (CPU consumption) in a preforked multi-processing module....

Apache Http Server 2.0.38 Apache Http Server 2.0.39 Apache Http Server 2.0.32 Apache Http Server 2.0.35 Apache Http Server 2.0.36 Apache Http Server 2.0.37 Apache Http Server 2.0 Apache Http Server 2.0.28 Apache Http Server 2.0.40 Apache Http Server 2.0.41

7.5

CVSSv2

Directory traversal vulnerability in Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote attackers to read arbitrary files and execute commands via .. (dot dot) sequences containing \ (backslash) characters....

Apache Http Server 2.0.28 Apache Http Server 2.0.32 Apache Http Server 2.0.39 Apache Http Server 2.0 Apache Http Server 2.0.35 Apache Http Server 2.0.36 Apache Http Server 2.0.37 Apache Http Server 2.0.38 Apache Http Server 2.0.341 EDB exploit available

5

CVSSv2

Unknown vulnerability in filestat.c for Apache running on OS2, versions 2.0 through 2.0.45, allows unknown attackers to cause a denial of service via requests related to device names....

Apache Http Server 2.0.32 Apache Http Server 2.0.35 Apache Http Server 2.0.36 Apache Http Server 2.0.43 Apache Http Server 2.0.44 Apache Http Server 2.0.37 Apache Http Server 2.0.38 Apache Http Server 2.0.45 Apache Http Server 2.0.9 Apache Http Server 2.0 Apache Http Server 2.0.28 Apache Http Server 2.0.41 Apache Http Server 2.0.42 Apache Http Server 2.0.39 Apache Http Server 2.0.40

4.3

CVSSv2

http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apache HTTP Server 1.3 before 1.3.35, 2.0 before 2.0.58, and 2.2 before 2.2.2, does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which...

Apache Http Server 1.3.18 Apache Http Server 1.3.19 Ibm Http Server 6.0 Ibm Http Server 6.1 Apache Http Server 1.3.12 Apache Http Server 1.3.17 Apache Http Server 2.2 Apache Http Server 2.2.1 Apache Http Server 1.3.11 Apache Http Server 2.0 Apache Http Server 2.0.57 Apache Http Server 1.3.1 Apache Http Server 1.3.20 Apache Http Server 1.3 Apache Http Server 1.3.221 EDB exploit available

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook