Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache http server 2.0.40 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2002-1850
mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and possibly remote malicious users to cause a denial of service (hang and memory consumption) by causing a CGI script to send a large amount of data to stderr, which results in a read/write deadlock between httpd and the CGI...
Apache Http Server 2.0.39
Apache Http Server 2.0.40
1 EDB exploit
NA
CVE-2003-0189
The authentication module for Apache 2.0.40 up to and including 2.0.45 on Unix does not properly handle threads safely when using the crypt_r or crypt functions, which allows remote malicious users to cause a denial of service (failed Basic authentication with valid usernames and...
Apache Http Server 2.0.42
Apache Http Server 2.0.44
Apache Http Server 2.0.41
Apache Http Server 2.0.45
Apache Http Server 2.0.40
Apache Http Server 2.0.43
NA
CVE-2003-0016
Apache prior to 2.0.44, when running on unpatched Windows 9x and Me operating systems, allows remote malicious users to cause a denial of service or execute arbitrary code via an HTTP request containing MS-DOS device names.
Apache Http Server 2.0.42
Apache Http Server 2.0.37
Apache Http Server 2.0.39
Apache Http Server 2.0.41
Apache Http Server 2.0.38
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server 2.0.43
NA
CVE-2003-0017
Apache 2.0 prior to 2.0.44 on Windows platforms allows remote malicious users to obtain certain files via an HTTP request that ends in certain illegal characters such as ">", which causes a different filename to be processed and served.
Apache Http Server 2.0.42
Apache Http Server 2.0.37
Apache Http Server 2.0.39
Apache Http Server 2.0.41
Apache Http Server 2.0.38
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server 2.0.43
NA
CVE-2003-0245
Vulnerability in the apr_psprintf function in the Apache Portable Runtime (APR) library for Apache 2.0.37 up to and including 2.0.45 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via long strings, as demonstrated using XML ...
Apache Http Server 2.0.42
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.39
Apache Http Server 2.0.41
Apache Http Server 2.0.38
Apache Http Server 2.0.45
Apache Http Server 2.0.40
Apache Http Server 2.0.43
1 EDB exploit
NA
CVE-2002-1593
mod_dav in Apache prior to 2.0.42 does not properly handle versioning hooks, which may allow remote malicious users to kill a child process via a null dereference and cause a denial of service (CPU consumption) in a preforked multi-processing module.
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.39
Apache Http Server 2.0.41
Apache Http Server 2.0.32
Apache Http Server 2.0.38
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server 2.0
Apache Http Server 2.0.28
NA
CVE-2004-0113
Memory leak in ssl_engine_io.c for mod_ssl in Apache 2 prior to 2.0.49 allows remote malicious users to cause a denial of service (memory consumption) via plain HTTP requests to the SSL port of an SSL-enabled server.
Apache Http Server 2.0.42
Apache Http Server 2.0.47
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.39
Apache Http Server 2.0.41
Apache Http Server 2.0.38
Apache Http Server 2.0.48
Apache Http Server 2.0.45
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server 2.0.46
Apache Http Server 2.0.43
NA
CVE-2003-0134
Unknown vulnerability in filestat.c for Apache running on OS2, versions 2.0 up to and including 2.0.45, allows unknown malicious users to cause a denial of service via requests related to device names.
Apache Http Server 2.0.42
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.39
Apache Http Server 2.0.41
Apache Http Server 2.0.9
Apache Http Server 2.0.32
Apache Http Server 2.0.38
Apache Http Server 2.0.45
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server 2.0.43
Apache Http Server 2.0.28
Apache Http Server 2.0
NA
CVE-2003-0192
Apache 2 prior to 2.0.47, and certain versions of mod_ssl for Apache 1.3, do not properly handle "certain sequences of per-directory renegotiations and the SSLCipherSuite directive being used to upgrade from a weak ciphersuite to a strong one," which could cause Apache ...
Apache Http Server 2.0.42
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.39
Apache Http Server 2.0.41
Apache Http Server 2.0.32
Apache Http Server 2.0.38
Apache Http Server 2.0.45
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server 2.0.46
Apache Http Server 2.0.43
Apache Http Server 2.0.28
Apache Http Server 2.0
NA
CVE-2003-0253
The prefork MPM in Apache 2 prior to 2.0.47 does not properly handle certain errors from accept, which could lead to a denial of service.
Apache Http Server 2.0.42
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.39
Apache Http Server 2.0.41
Apache Http Server 2.0.32
Apache Http Server 2.0.38
Apache Http Server 2.0.45
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server 2.0.46
Apache Http Server 2.0.43
Apache Http Server 2.0.28
Apache Http Server 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-9474
CVE-2024-36620
file inclusion
cache poisoning
man-in-the-middle
CVE-2024-20138
CVE-2024-0012
CVE-2024-20131
CVE-2024-11995
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »