apache http server 2.0.34 vulnerabilities and exploits

(subscribe to this query)

NA

Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote attackers to determine the full pathname of the server via (1) a request for a .var file, which leaks the pathname in the resulting error message, or (2) via an error message that occurs when a script (child...

Apache Http Server 2.0.28 Apache Http Server 2.0.39 Apache Http Server 2.0 Apache Http Server 2.0.37 Apache Http Server 2.0.38 Apache Http Server 2.0.32 Apache Http Server 2.0.34 Apache Http Server 2.0.35 Apache Http Server 2.0.361 EDB exploit available

NA

Directory traversal vulnerability in Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote attackers to read arbitrary files and execute commands via .. (dot dot) sequences containing \ (backslash) characters....

Apache Http Server 2.0.28 Apache Http Server 2.0.32 Apache Http Server 2.0.39 Apache Http Server 2.0 Apache Http Server 2.0.35 Apache Http Server 2.0.36 Apache Http Server 2.0.37 Apache Http Server 2.0.38 Apache Http Server 2.0.341 EDB exploit available

NA

Format string vulnerability in the mod_tcl module 1.0 for Apache 2.x allows context-dependent attackers to execute arbitrary code via format string specifiers that are not properly handled in a set_var function call in (1) tcl_cmds.c and (2) tcl_core.c....

Apache Http Server 2.0.28 Apache Http Server 2.0.32 Apache Http Server 2.0.39 Apache Http Server 2.0.40 Apache Http Server 2.0.48 Apache Http Server 2.0.49 Apache Http Server 2.0.56 Apache Http Server 2.0.57 Apache Http Server 2.1.3 Apache Http Server 2.1.4 Apache Http Server 2.1.5 Apache Http Server 2.0.37 Apache Http Server 2.0.38 Apache Http Server 2.0.46 Apache Http Server 2.0.47 Apache Http Server 2.0.54 Apache Http Server 2.0.55 Apache Http Server 2.1.1 Apache Http Server 2.1.2 Apache Http Server 2.2.3 Apache Http Server 2.0 Apache Http Server 2.0.35 Apache Http Server 2.0.36 Apache Http Server 2.0.44 Apache Http Server 2.0.45 Apache Http Server 2.0.52 Apache Http Server 2.0.53 Apache Http Server 2.0.9 Apache Http Server 2.1 Apache Http Server 2.2.1 Apache Http Server 2.2.2 Apache Http Server 2.0.34 Apache Http Server 2.0.41 Apache Http Server 2.0.42 Apache Http Server 2.0.43 Apache Http Server 2.0.50 Apache Http Server 2.0.51 Apache Http Server 2.0.58 Apache Http Server 2.1.6 Apache Http Server 2.2

NA

Cross-site scripting (XSS) vulnerability in Apache 2.2.6 and earlier allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded URLs that are not properly handled when displaying the 403 Forbidden error page....

Apache Http Server 2.0.28 Apache Http Server 2.0 Apache Http Server 2.0.37 Apache Http Server 2.0.32 Apache Http Server 2.0.39 Apache Http Server 2.0.40 Apache Http Server 2.0.41 Apache Http Server 2.0.48 Apache Http Server 2.0.49 Apache Http Server 2.0.56 Apache Http Server 2.0.57 Apache Http Server 2.1.2 Apache Http Server 2.1.3 Apache Http Server 2.2.1 Apache Http Server 2.2.2 Apache Http Server 2.0.34 Apache Http Server 2.0.42 Apache Http Server 2.0.43 Apache Http Server 2.0.50 Apache Http Server 2.0.51 Apache Http Server 2.0.58 Apache Http Server 2.0.59 Apache Http Server 2.1.4 Apache Http Server 2.1.5 Apache Http Server 2.2.3 Apache Http Server 2.2.4 Apache Http Server 2.0.35 Apache Http Server 2.0.36 Apache Http Server 2.0.44 Apache Http Server 2.0.45 Apache Http Server 2.0.52 Apache Http Server 2.0.53 Apache Http Server 2.0.60 Apache Http Server 2.0.61 Apache Http Server 2.1.6 Apache Http Server 2.1.7 Apache Http Server -Apache Http Server 2.0.38 Apache Http Server 2.0.46 Apache Http Server 2.0.47 Apache Http Server 2.0.54 Apache Http Server 2.0.55 Apache Http Server 2.0.9 Apache Http Server 2.1 Apache Http Server 2.1.1 Apache Http Server 2.1.8 Apache Http Server 2.21 EDB exploit available1 Github repository available

NA

Cross-site scripting (XSS) vulnerability in mod_autoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it...

Apache Http Server 2.0.28 Apache Http Server 2.0.38 Apache Http Server 2.0.39 Apache Http Server 2.0.46 Apache Http Server 2.0.47 Apache Http Server 2.0.55 Apache Http Server 2.0.56 Apache Http Server 2.1 Apache Http Server 2.1.1 Apache Http Server 2.1.8 Apache Http Server 2.2 Apache Http Server 2.2.1 Apache Http Server 2.0 Apache Http Server 2.0.36 Apache Http Server 2.0.37 Apache Http Server 2.0.44 Apache Http Server 2.0.45 Apache Http Server 2.0.53 Apache Http Server 2.0.54 Apache Http Server 2.0.61 Apache Http Server 2.0.9 Apache Http Server 2.1.6 Apache Http Server 2.1.7 Apache Http Server 2.0.32 Apache Http Server 2.0.40 Apache Http Server 2.0.41 Apache Http Server 2.0.48 Apache Http Server 2.0.49 Apache Http Server 2.0.50 Apache Http Server 2.0.57 Apache Http Server 2.0.58 Apache Http Server 2.1.2 Apache Http Server 2.1.3 Apache Http Server 2.2.2 Apache Http Server 2.2.3 Apache Http Server 2.0.34 Apache Http Server 2.0.35 Apache Http Server 2.0.42 Apache Http Server 2.0.43 Apache Http Server 2.0.51 Apache Http Server 2.0.52 Apache Http Server 2.0.59 Apache Http Server 2.0.60 Apache Http Server 2.1.4 Apache Http Server 2.1.5 Apache Http Server 2.2.4 Apache Http Server -1 Github repository available

NA

Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, allows local users to gain privileges via a .htaccess file with a crafted SetEnvIf directive, in...

Apache Http Server 2.0.61 Apache Http Server 2.0.58 Apache Http Server 2.0.53 Apache Http Server 2.0.52 Apache Http Server 2.0.44 Apache Http Server 2.0.59 Apache Http Server 2.0.32 Apache Http Server 2.0.41 Apache Http Server 2.0.40 Apache Http Server 2.0.55 Apache Http Server 2.0.54 Apache Http Server 2.0.47 Apache Http Server 2.0.46 Apache Http Server 2.0.63 Apache Http Server 2.0.9 Apache Http Server 2.0.35 Apache Http Server 2.0.34 Apache Http Server 2.0.64 Apache Http Server 2.0.51 Apache Http Server 2.0.50 Apache Http Server 2.0.43 Apache Http Server 2.0.42 Apache Http Server 2.0.45 Apache Http Server 2.0.28 Apache Http Server 2.0.39 Apache Http Server 2.0.38 Apache Http Server 2.0.57 Apache Http Server 2.0.56 Apache Http Server 2.0.49 Apache Http Server 2.0.48 Apache Http Server 2.0.60 Apache Http Server 2.0 Apache Http Server 2.0.37 Apache Http Server 2.0.36 Apache Http Server 2.2.8 Apache Http Server 2.2.13 Apache Http Server 2.2.4 Apache Http Server 2.2.18 Apache Http Server 2.2.3 Apache Http Server 2.2.12 Apache Http Server 2.2.14 Apache Http Server 2.2.19 Apache Http Server 2.2.9 Apache Http Server 2.2.10 Apache Http Server 2.2.15 Apache Http Server 2.2.2 Apache Http Server 2.2.1 Apache Http Server 2.2.6 Apache Http Server 2.2.11 Apache Http Server 2.2.0 Apache Http Server 2.2.16 Apache Http Server 2.2.20 Apache Http Server 2.2.211 EDB exploit available10 Github repositories available

NA

The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, does not restrict the size of values of environment variables, which allows local users to cause a denial of service (memory...

Apache Http Server 2.0.55 Apache Http Server 2.0.54 Apache Http Server 2.0.46 Apache Http Server 2.0.49 Apache Http Server 2.0.63 Apache Http Server 2.0.9 Apache Http Server 2.0.35 Apache Http Server 2.0.34 Apache Http Server 2.0.37 Apache Http Server 2.0.57 Apache Http Server 2.0.56 Apache Http Server 2.0.51 Apache Http Server 2.0.48 Apache Http Server 2.0.43 Apache Http Server 2.0.60 Apache Http Server 2.0 Apache Http Server 2.0.36 Apache Http Server 2.0.39 Apache Http Server 2.0.50 Apache Http Server 2.0.53 Apache Http Server 2.0.42 Apache Http Server 2.0.45 Apache Http Server 2.0.28 Apache Http Server 2.0.38 Apache Http Server 2.0.41 Apache Http Server 2.0.61 Apache Http Server 2.0.58 Apache Http Server 2.0.52 Apache Http Server 2.0.47 Apache Http Server 2.0.44 Apache Http Server 2.0.59 Apache Http Server 2.0.32 Apache Http Server 2.0.40 Apache Http Server 2.0.64 Apache Http Server 2.2.1 Apache Http Server 2.2.3 Apache Http Server 2.2.12 Apache Http Server 2.2.19 Apache Http Server 2.2.6 Apache Http Server 2.2.11 Apache Http Server 2.2.0 Apache Http Server 2.2.16 Apache Http Server 2.2.21 Apache Http Server 2.2.9 Apache Http Server 2.2.10 Apache Http Server 2.2.15 Apache Http Server 2.2.2 Apache Http Server 2.2.20 Apache Http Server 2.2.8 Apache Http Server 2.2.13 Apache Http Server 2.2.4 Apache Http Server 2.2.18 Apache Http Server 2.2.141 EDB exploit available11 Github repositories available

NA

Cross-site scripting (XSS) vulnerability in the mod_imap module of Apache httpd before 1.3.35-dev and Apache httpd 2.0.x before 2.0.56-dev allows remote attackers to inject arbitrary web script or HTML via the Referer when using image maps....

Apache Http Server 1.3.0 Apache Http Server 1.3.1 Apache Http Server 1.3.13 Apache Http Server 1.3.14 Apache Http Server 1.3.17 Apache Http Server 1.3.18 Apache Http Server 1.3.22 Apache Http Server 1.3.26 Apache Http Server 1.3.32 Apache Http Server 1.3.4 Apache Http Server 1.3.5 Apache Http Server 2.0.28 Apache Http Server 1.3.11 Apache Http Server 1.3.12 Apache Http Server 1.3.15 Apache Http Server 1.3.19 Apache Http Server 1.3.2 Apache Http Server 1.3.24 Apache Http Server 1.3.29 Apache Http Server 1.3.3 Apache Http Server 1.3.7 Apache Http Server 1.3.8 Apache Http Server 2.0.32 Apache Http Server 2.0.34 Apache Http Server 2.0.41 Apache Http Server 2.0.42 Apache Http Server 2.0.50 Apache Http Server 2.0.51 Apache Http Server 1.3 Apache Http Server 1.3.16 Apache Http Server 1.3.20 Apache Http Server 1.3.25 Apache Http Server 1.3.30 Apache Http Server 1.3.31 Apache Http Server 1.3.9 Apache Http Server 2.0 Apache Http Server 2.0.35 Apache Http Server 2.0.36 Apache Http Server 2.0.43 Apache Http Server 2.0.44 Apache Http Server 2.0.45 Apache Http Server 2.0.52 Apache Http Server 2.0.53 Apache Http Server 1.3.10 Apache Http Server 1.3.23 Apache Http Server 1.3.27 Apache Http Server 1.3.28 Apache Http Server 1.3.6 Apache Http Server 2.0.39 Apache Http Server 2.0.40 Apache Http Server 2.0.48 Apache Http Server 2.0.49 Apache Http Server 2.0.9 Apache Mod Imap Apache Http Server 2.0.37 Apache Http Server 2.0.38 Apache Http Server 2.0.46 Apache Http Server 2.0.47 Apache Http Server 2.0.54 Apache Http Server 2.0.55

NA

The mod_proxy module in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x before 2.2.18, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which...

Apache Http Server 2.0.42 Apache Http Server 2.0.58 Apache Http Server 2.2.11 Apache Http Server 2.2.0 Apache Http Server 2.2.10 Apache Http Server 2.2.13 Apache Http Server 2.0.47 Apache Http Server 2.0.56 Apache Http Server 2.0.50 Apache Http Server 2.0.27 Apache Http Server 2.2.2 Apache Http Server 2.0.12 Apache Http Server 2.0.20 Apache Http Server2.0a9 Apache Http Server 2.2.4 Apache Http Server 2.0.35 Apache Http Server 2.0.37 Apache Http Server 2.0.55 Apache Http Server 2.2.17 Apache Http Server 2.0.44 Apache Http Server 2.2.16 Apache Http Server 2.0.39 Apache Http Server 2.0.18 Apache Http Server 2.0.25 Apache Http Server 2.2.8 Apache Http Server 2.0.52 Apache Http Server2.0a7 Apache Http Server 2.0.21 Apache Http Server 2.0.53 Apache Http Server 2.0.57 Apache Http Server 2.0.51 Apache Http Server 2.0.33 Apache Http Server 2.0.17 Apache Http Server 2.0.63 Apache Http Server 2.2.14 Apache Http Server 2.0.22 Apache Http Server 2.0.15 Apache Http Server 2.0.41 Apache Http Server 2.0.49 Apache Http Server 2.0.29 Apache Http Server 2.0.26 Apache Http Server2.0a8 Apache Http Server 2.0.23 Apache Http Server2.0a2 Apache Http Server 2.0.61 Apache Http Server 2.2.6 Apache Http Server 2.0.32 Apache Http Server 2.0.34 Apache Http Server2.0a5 Apache Http Server2.0a3 Apache Http Server 2.0.38 Apache Http Server 2.0.19 Apache Http Server 2.2.9 Apache Http Server2.0a4 Apache Http Server 2.0.24 Apache Http Server 2.0.48 Apache Http Server 2.0.16 Apache Http Server 2.0.45 Apache Http Server 2.2.12 Apache Http Server 2.0.40 Apache Http Server 2.0.36 Apache Http Server2.0a6 Apache Http Server 2.2.3 Apache Http Server 2.0.46 Apache Http Server 2.0.54 Apache Http Server 2.2.15 Apache Http Server 2.0.43 Apache Http Server 2.0.11 Apache Http Server 2.0.59 Apache Http Server 2.0.14 Apache Http Server 2.0.28 Apache Http Server 2.0.31 Apache Http Server2.0a1 Apache Http Server 2.0.30 Apache Http Server 2.2.1 Apache Http Server 2.0.131 EDB exploit available9 Github repositories available

Get Started

1 2 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook