Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apache http server 1.3.11 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2000-1204
Vulnerability in the mod_vhost_alias virtual hosting module for Apache 1.3.9, 1.3.11 and 1.3.12 allows remote attackers to obtain the source code for CGI programs if the cgi-bin directory is under the document root....
Apache Http Server 1.3.12Apache Http Server 1.3.11Apache Http Server 1.3.9
NA
CVE-2000-0505
The Apache 1.3.x HTTP server for Windows platforms allows remote attackers to list directory contents by requesting a URL containing a large number of / characters....
Apache Http Server 1.3.11Apache Http Server 1.3.12Ibm Http Server 1.3.3Ibm Http Server 1.3.6.2Apache Http Server 1.3.6Apache Http Server 1.3.9
NA
CVE-2001-0925
The default installation of Apache before 1.3.19 allows remote attackers to list directories instead of the multiview index.html file via an HTTP request for a path that contains many / (slash) characters, which causes the path to be mishandled by (1) mod_negotiation, (2)...
Apache Http Server 1.3.11Apache Http Server 1.3.12Apache Http Server 1.3.14Apache Http Server 1.3.17Debian Debian Linux 2.2
NA
CVE-2002-2029
PHP, when installed on Windows with Apache and ScriptAlias for /php/ set to c:/php/, allows remote attackers to read arbitrary files and possibly execute arbitrary programs via an HTTP request for php.exe with a filename in the query string....
Apache Http Server 1.3.16Apache Http Server 1.3.17Apache Http Server 1.3.18Apache Http Server 1.3.19Apache Http Server 1.3.11Apache Http Server 1.3.13Apache Http Server 1.3.15Apache Http Server 1.3.20Apache Http Server 1.3.12Apache Http Server 1.3.14
NA
CVE-2000-0913
mod_rewrite in Apache 1.3.12 and earlier allows remote attackers to read arbitrary files if a RewriteRule directive is expanded to include a filename whose name contains a regular expression....
Apache Http Server 1.0.2Apache Http Server 1.0.3Apache Http Server 0.8.14Apache Http Server 1.0Apache Http Server 1.3.12Apache Http Server 1.0.5Apache Http Server 1.1Apache Http Server 0.8.11Apache Http Server 1.1.1Apache Http Server 1.3.11
NA
CVE-2000-1205
Cross site scripting vulnerabilities in Apache 1.3.0 through 1.3.11 allow remote attackers to execute script as other web site visitors via (1) the printenv CGI (printenv.pl), which does not encode its output, (2) pages generated by the ap_send_error_response function such as a...
Apache Http Server 1.3.0Apache Http Server 1.3.5Apache Http Server 1.3.6Apache Http Server 1.3.1Apache Http Server 1.3.10Apache Http Server 1.3.7Apache Http Server 1.3.8Apache Http Server 1.3.11Apache Http Server 1.3.2Apache Http Server 1.3.9Apache Http Server 1.3.3Apache Http Server 1.3.4
NA
CVE-2002-2103
Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities....
Apache Http Server 1.3.14Apache Http Server 1.3.16Apache Http Server 1.3.18Apache Http Server 1.3.9Apache Http Server 1.3.19Apache Http Server 1.3.20Apache Http Server 1.3.22Apache Http Server 1.3.23Apache Http Server 1.3.11Apache Http Server 1.3.12Apache Http Server 1.3.13Apache Http Server 1.3.15Apache Http Server 1.3.17
NA
CVE-2006-3918
http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apache HTTP Server 1.3 before 1.3.35, 2.0 before 2.0.58, and 2.2 before 2.2.2, does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which...
Apache Http Server 1.3.18Apache Http Server 1.3.19Ibm Http Server 6.0Ibm Http Server 6.1Apache Http Server 1.3.12Apache Http Server 1.3.17Apache Http Server 2.2Apache Http Server 2.2.1Apache Http Server 1.3.11Apache Http Server 2.0Apache Http Server 2.0.57Apache Http Server 1.3Apache Http Server 1.3.1Apache Http Server 1.3.20Apache Http Server 1.3.22
NA
CVE-2002-1658
Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow attackers to execute arbitrary code via a long user argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation of...
Apache Http Server 1.3.17Apache Http Server 1.3.18Apache Http Server 1.3.26Apache Http Server 1.3.27Apache Http Server 1.3.1Apache Http Server 1.3.11Apache Http Server 1.3.22Apache Http Server 1.3.23Apache Http Server 1.3.6Apache Http Server 1.3.9Apache Http Server 1.3.12Apache Http Server 1.3.14Apache Http Server 1.3.24Apache Http Server 1.3.25Apache Http Server 1.3.19Apache Http Server 1.3.20Apache Http Server 1.3.3Apache Http Server 1.3.4
NA
CVE-2003-0993
mod_access in Apache 1.3 before 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote attackers to bypass intended access restrictions....
Apache Http Server 1.3Apache Http Server 1.3.1Apache Http Server 1.3.22Apache Http Server 1.3.23Apache Http Server 1.3.3Apache Http Server 1.3.4Apache Http Server 1.3.18Apache Http Server 1.3.19Apache Http Server 1.3.20Apache Http Server 1.3.11Apache Http Server 1.3.12Apache Http Server 1.3.24Apache Http Server 1.3.25Apache Http Server 1.3.6Apache Http Server 1.3.7Apache Http Server 1.3.28Apache Http Server 1.3.29Apache Http Server 1.3.14Apache Http Server 1.3.17Apache Http Server 1.3.26Apache Http Server 1.3.27Apache Http Server 1.3.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-32034CVE-2022-2285IMAPCVE-2021-26855CVE-2022-32030CVE-2022-26763injectCVE-2022-32039SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook