Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2005-3656
Multiple format string vulnerabilities in logging functions in mod_auth_pgsql prior to 2.0.3, when used for user authentication against a PostgreSQL database, allows remote unauthenticated malicious users to execute arbitrary code, as demonstrated via the username.
Guiseppe Tanzilli And Matthias Eckermann Mod Auth Pgsql 0.9.5
Guiseppe Tanzilli And Matthias Eckermann Mod Auth Pgsql 0.9.6
Guiseppe Tanzilli And Matthias Eckermann Mod Auth Pgsql
890
VMScore
CVE-2005-2700
ssl_engine_kernel.c in mod_ssl prior to 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location context, which allows remote malicious users to bypass intende...
Apache Http Server
Debian Debian Linux 3.1
Debian Debian Linux 3.0
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
890
VMScore
CVE-2004-0646
Buffer overflow in the WriteToLog function for JRun 3.0 up to and including 4.0 web server connectors, such as (1) mod_jrun and (2) mod_jrun20 for Apache, with verbose logging enabled, allows remote malicious users to execute arbitrary code via a long HTTP header Content-Type fie...
Macromedia Jrun 3.1
Macromedia Jrun 3.0
Macromedia Coldfusion 6.1
Macromedia Coldfusion 6.0
Macromedia Jrun 4.0
890
VMScore
CVE-2004-0492
Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote malicious users to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data ...
Hp Webproxy 2.0
Hp Virtualvault 11.0.4
Apache Http Server 1.3.27
Ibm Http Server 1.3.28
Apache Http Server 1.3.28
Apache Http Server 1.3.31
Hp Webproxy 2.1
Ibm Http Server 1.3.26.1
Apache Http Server 1.3.26
Apache Http Server 1.3.29
Sgi Propack 2.4
Ibm Http Server 1.3.26
Ibm Http Server 1.3.26.2
Hp Vvos 11.04
Openbsd Openbsd 3.5
Openbsd Openbsd
Openbsd Openbsd 3.4
890
VMScore
CVE-2004-0385
Heap-based buffer overflow in Oracle 9i Application Server Web Cache 9.0.4.0.0, 9.0.3.1.0, 9.0.2.3.0, and 9.0.0.4.0 allows remote malicious users to execute arbitrary code via a long HTTP request method header to the Web Cache listener. NOTE: due to the vagueness of the Oracle ad...
Oracle Application Server Web Cache 9.0.2.3.0
Oracle Application Server Web Cache 9.0.3.1.0
Oracle E-business Suite 11i
Oracle Application Server Web Cache 9.0.4.0.0
Oracle Application Server Web Cache 9.0.0.4.0
890
VMScore
CVE-2003-0789
mod_cgid in Apache prior to 2.0.48, when using a threaded MPM, does not properly handle CGI redirect paths, which could cause Apache to send the output of a CGI program to the wrong client.
Apache Http Server
890
VMScore
CVE-2002-0513
The PHP administration script in popper_mod 1.2.1 and previous versions relies on Apache .htaccess authentication, which allows remote malicious users to gain privileges if the script is not appropriately configured by the administrator.
Symatec Popper Mod 1.2.1
Symatec Popper Mod 1.2
Symatec Popper Mod 1.0
890
VMScore
CVE-2002-0801
Buffer overflow in the ISAPI DLL filter for Macromedia JRun 3.1 allows remote malicious users to execute arbitrary code via a direct request to the filter with a long HTTP host header field in a URL for a .jsp file.
Macromedia Jrun 3.1
Macromedia Jrun 3.0
890
VMScore
CVE-1999-1293
mod_proxy in Apache 1.2.5 and previous versions allows remote malicious users to cause a denial of service via malformed FTP commands, which causes Apache to dump core.
Apache Http Server
890
VMScore
CVE-1999-1237
Multiple buffer overflows in smbvalid/smbval SMB authentication library, as used in Apache::AuthenSmb and possibly other modules, allows remote malicious users to execute arbitrary commands via (1) a long username, (2) a long password, and (3) other unspecified methods.
Apache Http Server -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »