Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache http server 1.0.2 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2001-1217
Directory traversal vulnerability in PL/SQL Apache module in Oracle Oracle 9i Application Server allows remote malicious users to access sensitive information via a double encoded URL with .. (dot dot) sequences.
Oracle Application Server 1.0.2
5
CVSSv2
CVE-2010-1623
Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) prior to 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote malicious users to cause a d...
Apache Apr-util 1.3.6
Apache Apr-util 1.2.13
Apache Apr-util 1.3.3
Apache Apr-util 0.9.11
Apache Apr-util 0.9.9
Apache Apr-util 1.2.7
Apache Apr-util 0.9.13
Apache Apr-util 1.2.8
Apache Apr-util 1.2.2
Apache Apr-util 1.3.0
Apache Apr-util 1.3.4
Apache Apr-util 0.9.4
Apache Apr-util 1.0.2
Apache Apr-util 0.9.14
Apache Apr-util 1.0
Apache Apr-util 1.2.1
Apache Apr-util 0.9.3
Apache Apr-util
Apache Apr-util 1.1.0
Apache Apr-util 0.9.12
Apache Apr-util 0.9.1
Apache Apr-util 0.9.7
6.8
CVSSv2
CVE-2010-4539
The walk function in repos.c in the mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion prior to 1.6.15, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger the walking ...
Apache Subversion 1.2.0
Apache Subversion 1.0.4
Apache Subversion 1.6.10
Apache Subversion 0.22.0
Apache Subversion 1.0.8
Apache Subversion 1.4.5
Apache Subversion 1.0.2
Apache Subversion 1.1.2
Apache Subversion 0.26.0
Apache Subversion 0.10.1
Apache Subversion 0.15
Apache Subversion 1.0.9
Apache Subversion 1.4.2
Apache Subversion 0.37.0
Apache Subversion M2
Apache Subversion 1.6.2
Apache Subversion 0.9
Apache Subversion 0.7
Apache Subversion 0.19.0
Apache Subversion 0.22.2
Apache Subversion 0.12.0
Apache Subversion 1.5.5
4.3
CVSSv2
CVE-2011-0715
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion prior to 1.6.16, allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a request that contains a lock token.
Apache Subversion 1.0.1
Apache Subversion 0.36.0
Apache Subversion 1.0.9
Apache Subversion 1.0.6
Apache Subversion 1.2.1
Apache Subversion 1.2.0
Apache Subversion 1.1.4
Apache Subversion 1.4.0
Apache Subversion 0.18.1
Apache Subversion 0.18.0
Apache Subversion 0.22.2
Apache Subversion 0.28.1
Apache Subversion 0.28.0
Apache Subversion 0.34.0
Apache Subversion 0.33.1
Apache Subversion 1.5.0
Apache Subversion 1.5.3
Apache Subversion 1.6.3
Apache Subversion 1.6.2
Apache Subversion 0.9
Apache Subversion 0.8
Apache Subversion 0.15
7.5
CVSSv2
CVE-2002-0656
Buffer overflows in OpenSSL 0.9.6d and previous versions, and 0.9.7-beta2 and previous versions, allow remote malicious users to execute arbitrary code via (1) a large client master key in SSL2 or (2) a large session ID in SSL3.
Openssl Openssl 0.9.6a
Openssl Openssl 0.9.6b
Openssl Openssl 0.9.6c
Openssl Openssl 0.9.6d
Openssl Openssl 0.9.1c
Openssl Openssl 0.9.2b
Openssl Openssl 0.9.3
Oracle Application Server 1.0.2.1s
Oracle Application Server 1.0.2.2
Oracle Corporate Time Outlook Connector 3.1
Oracle Corporate Time Outlook Connector 3.1.1
Openssl Openssl 0.9.4
Openssl Openssl 0.9.5a
Openssl Openssl 0.9.7
Oracle Application Server 1.0.2
Oracle Corporate Time Outlook Connector 3.1.2
Oracle Http Server 9.0.1
Openssl Openssl 0.9.5
Openssl Openssl 0.9.6
Oracle Application Server
Oracle Corporate Time Outlook Connector 3.3
Oracle Http Server 9.2.0
1 EDB exploit
7.5
CVSSv2
CVE-2002-0561
The default configuration of the PL/SQL Gateway web administration interface in Oracle 9i Application Server 1.0.2.x uses null authentication, which allows remote malicious users to gain privileges and modify DAD settings.
Oracle Application Server 1.0.2
Oracle Application Server Web Cache 2.0.0.0
Oracle Oracle9i 9.0.1
Oracle Application Server Web Cache 2.0.0.1
Oracle Application Server Web Cache 2.0.0.2
Oracle Oracle8i 8.1.7 .1
Oracle Oracle9i 9.0
Oracle Application Server Web Cache 2.0.0.3
Oracle Oracle8i 8.1.7
7.5
CVSSv2
CVE-2002-0655
OpenSSL 0.9.6d and previous versions, and 0.9.7-beta2 and previous versions, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow malicious users to cause a denial of service and possibly execute arbitrary code.
Openssl Openssl 0.9.1c
Openssl Openssl 0.9.5a
Openssl Openssl 0.9.6a
Oracle Application Server 1.0.2
Openssl Openssl 0.9.6c
Openssl Openssl 0.9.6d
Openssl Openssl 0.9.7
Openssl Openssl 0.9.2b
Openssl Openssl 0.9.3
Openssl Openssl 0.9.4
Openssl Openssl 0.9.5
Oracle Corporate Time Outlook Connector 3.1.1
Oracle Corporate Time Outlook Connector 3.1.2
Oracle Corporate Time Outlook Connector 3.3
Oracle Http Server 9.0.1
Oracle Application Server 1.0.2.2
Openssl Openssl 0.9.6
Openssl Openssl 0.9.6b
Oracle Application Server
Oracle Application Server 1.0.2.1s
Oracle Corporate Time Outlook Connector 3.1
Oracle Http Server 9.2.0
5
CVSSv2
CVE-2002-0659
The ASN1 library in OpenSSL 0.9.6d and previous versions, and 0.9.7-beta2 and previous versions, allows remote malicious users to cause a denial of service via invalid encodings.
Openssl Openssl 0.9.1c
Openssl Openssl 0.9.2b
Openssl Openssl 0.9.3
Oracle Application Server 1.0.2.1s
Oracle Application Server 1.0.2.2
Oracle Corporate Time Outlook Connector 3.1
Oracle Corporate Time Outlook Connector 3.1.1
Openssl Openssl 0.9.6a
Openssl Openssl 0.9.6b
Openssl Openssl 0.9.6c
Openssl Openssl 0.9.6d
Openssl Openssl 0.9.4
Openssl Openssl 0.9.5a
Openssl Openssl 0.9.7
Oracle Application Server 1.0.2
Oracle Corporate Time Outlook Connector 3.1.2
Oracle Http Server 9.0.1
Openssl Openssl 0.9.5
Openssl Openssl 0.9.6
Oracle Application Server
Oracle Corporate Time Outlook Connector 3.3
Oracle Http Server 9.2.0
1 EDB exploit
NA
CVE-2023-3446
Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DH_check(), DH_check_ex() or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long delays. Where the key or parameters that...
Openssl Openssl 1.0.2
Openssl Openssl 1.1.1
Openssl Openssl 3.0.0
Openssl Openssl 3.1.1
Openssl Openssl 3.1.0
7.5
CVSSv2
CVE-2009-0918
Multiple unspecified vulnerabilities in DFLabs PTK 1.0.0 up to and including 1.0.4 allow remote malicious users to execute arbitrary commands in processes launched by PTK's Apache HTTP Server via (1) "external tools" or (2) a crafted forensic image.
Dflabs Ptk 1.0.4
Dflabs Ptk 1.0.2
Dflabs Ptk 1.0.3
Dflabs Ptk 1.0.0
Dflabs Ptk 1.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »