Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
apache http server 2.0.52 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1344
Buffer overflow in htdigest in Apache 2.0.52 may allow attackers to execute arbitrary code via a long realm argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation of privileges,...
Apache Http Server 2.0.52
2 EDB exploits available
NA
CVE-2007-6203
Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting (XSS) style attacks using web client...
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.0.46
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.4
Apache Http Server 2.0.47
Apache Http Server 2.0.48
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.59
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2.0
1 EDB exploit available
1 Github repository available
NA
CVE-2004-0885
The mod_ssl module in Apache 2.0.35 through 2.0.52, when using the "SSLCipherSuite" directive in directory or location context, allows remote clients to bypass intended restrictions by using any cipher suite that is allowed by the virtual host configuration....
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.35
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
NA
CVE-2005-2728
The byte-range filter in Apache 2.0 before 2.0.54 allows remote attackers to cause a denial of service (memory consumption) via an HTTP header with a large Range field....
Apache Http Server 2.0.28
Apache Http Server 2.0.32
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.43
Apache Http Server 2.0.44
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.45
Apache Http Server 2.0.46
Apache Http Server 2.0.53
Apache Http Server 2.0.9
Apache Http Server 2.0
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.47
Apache Http Server 2.0.48
NA
CVE-2005-3357
mod_ssl in Apache 2.0 up to 2.0.55, when configured with an SSL vhost with access control and a custom error 400 error page, allows remote attackers to cause a denial of service (application crash) via a non-SSL request to an SSL port, which triggers a NULL pointer dereference....
Apache Http Server 2.0
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.55
Apache Http Server 2.0.9
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.0.28
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.32
Apache Http Server 2.0.35
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
NA
CVE-2006-4154
Format string vulnerability in the mod_tcl module 1.0 for Apache 2.x allows context-dependent attackers to execute arbitrary code via format string specifiers that are not properly handled in a set_var function call in (1) tcl_cmds.c and (2) tcl_core.c....
Apache Http Server 2.0.28
Apache Http Server 2.0.32
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.57
Apache Http Server 2.1.3
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.1.1
Apache Http Server 2.1.2
Apache Http Server 2.2.3
Apache Http Server 2.0
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.9
Apache Http Server 2.1
Apache Http Server 2.2.1
Apache Http Server 2.2.2
Apache Http Server 2.0.34
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.58
Apache Http Server 2.1.6
Apache Http Server 2.2
NA
CVE-2008-2168
Cross-site scripting (XSS) vulnerability in Apache 2.2.6 and earlier allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded URLs that are not properly handled when displaying the 403 Forbidden error page....
Apache Http Server 2.0.28
Apache Http Server 2.0
Apache Http Server 2.0.37
Apache Http Server 2.0.32
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.57
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.1
Apache Http Server 2.2.2
Apache Http Server 2.0.34
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.50
Apache Http Server 2.0.51
Apache Http Server 2.0.58
Apache Http Server 2.0.59
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.3
Apache Http Server 2.2.4
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.52
Apache Http Server 2.0.53
Apache Http Server 2.0.60
Apache Http Server 2.0.61
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server -
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.0.9
Apache Http Server 2.1
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2
1 EDB exploit available
1 Github repository available
NA
CVE-2007-4465
Cross-site scripting (XSS) vulnerability in mod_autoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it...
Apache Http Server 2.0.28
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.55
Apache Http Server 2.0.56
Apache Http Server 2.1
Apache Http Server 2.1.1
Apache Http Server 2.1.8
Apache Http Server 2.2
Apache Http Server 2.2.1
Apache Http Server 2.0
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.44
Apache Http Server 2.0.45
Apache Http Server 2.0.53
Apache Http Server 2.0.54
Apache Http Server 2.0.61
Apache Http Server 2.0.9
Apache Http Server 2.1.6
Apache Http Server 2.1.7
Apache Http Server 2.0.32
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.50
Apache Http Server 2.0.57
Apache Http Server 2.0.58
Apache Http Server 2.1.2
Apache Http Server 2.1.3
Apache Http Server 2.2.2
Apache Http Server 2.2.3
Apache Http Server 2.0.34
Apache Http Server 2.0.35
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.51
Apache Http Server 2.0.52
Apache Http Server 2.0.59
Apache Http Server 2.0.60
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.2.4
Apache Http Server -
1 Github repository available
NA
CVE-2011-4415
The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, does not restrict the size of values of environment variables, which allows local users to cause a denial of service (memory...
Apache Http Server 2.0.55
Apache Http Server 2.0.54
Apache Http Server 2.0.46
Apache Http Server 2.0.49
Apache Http Server 2.0.63
Apache Http Server 2.0.9
Apache Http Server 2.0.35
Apache Http Server 2.0.34
Apache Http Server 2.0.37
Apache Http Server 2.0.57
Apache Http Server 2.0.56
Apache Http Server 2.0.51
Apache Http Server 2.0.48
Apache Http Server 2.0.43
Apache Http Server 2.0.60
Apache Http Server 2.0
Apache Http Server 2.0.36
Apache Http Server 2.0.39
Apache Http Server 2.0.50
Apache Http Server 2.0.53
Apache Http Server 2.0.42
Apache Http Server 2.0.45
Apache Http Server 2.0.28
Apache Http Server 2.0.38
Apache Http Server 2.0.41
Apache Http Server 2.0.61
Apache Http Server 2.0.58
Apache Http Server 2.0.52
Apache Http Server 2.0.47
Apache Http Server 2.0.44
Apache Http Server 2.0.59
Apache Http Server 2.0.32
Apache Http Server 2.0.40
Apache Http Server 2.0.64
Apache Http Server 2.2.1
Apache Http Server 2.2.3
Apache Http Server 2.2.12
Apache Http Server 2.2.19
Apache Http Server 2.2.6
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.16
Apache Http Server 2.2.21
Apache Http Server 2.2.9
Apache Http Server 2.2.10
Apache Http Server 2.2.15
Apache Http Server 2.2.2
Apache Http Server 2.2.20
Apache Http Server 2.2.8
Apache Http Server 2.2.13
Apache Http Server 2.2.4
Apache Http Server 2.2.18
Apache Http Server 2.2.14
1 EDB exploit available
8 Github repositories available
NA
CVE-2011-3607
Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, allows local users to gain privileges via a .htaccess file with a crafted SetEnvIf directive, in...
Apache Http Server 2.0.61
Apache Http Server 2.0.58
Apache Http Server 2.0.53
Apache Http Server 2.0.52
Apache Http Server 2.0.44
Apache Http Server 2.0.59
Apache Http Server 2.0.32
Apache Http Server 2.0.41
Apache Http Server 2.0.40
Apache Http Server 2.0.55
Apache Http Server 2.0.54
Apache Http Server 2.0.47
Apache Http Server 2.0.46
Apache Http Server 2.0.63
Apache Http Server 2.0.9
Apache Http Server 2.0.35
Apache Http Server 2.0.34
Apache Http Server 2.0.64
Apache Http Server 2.0.51
Apache Http Server 2.0.50
Apache Http Server 2.0.43
Apache Http Server 2.0.42
Apache Http Server 2.0.45
Apache Http Server 2.0.28
Apache Http Server 2.0.39
Apache Http Server 2.0.38
Apache Http Server 2.0.57
Apache Http Server 2.0.56
Apache Http Server 2.0.49
Apache Http Server 2.0.48
Apache Http Server 2.0.60
Apache Http Server 2.0
Apache Http Server 2.0.37
Apache Http Server 2.0.36
Apache Http Server 2.2.8
Apache Http Server 2.2.13
Apache Http Server 2.2.4
Apache Http Server 2.2.18
Apache Http Server 2.2.3
Apache Http Server 2.2.12
Apache Http Server 2.2.14
Apache Http Server 2.2.19
Apache Http Server 2.2.9
Apache Http Server 2.2.10
Apache Http Server 2.2.15
Apache Http Server 2.2.2
Apache Http Server 2.2.1
Apache Http Server 2.2.6
Apache Http Server 2.2.11
Apache Http Server 2.2.0
Apache Http Server 2.2.16
Apache Http Server 2.2.20
Apache Http Server 2.2.21
1 EDB exploit available
7 Github repositories available
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-20607
arbitrary
CVE-2022-3229
CVE-2022-44268
code injection
CVE-2023-25016
CVE-2022-48311
CVE-2022-47949
buffer overflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »
Vulmon