Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache http server 2.0.28 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1593
mod_dav in Apache prior to 2.0.42 does not properly handle versioning hooks, which may allow remote malicious users to kill a child process via a null dereference and cause a denial of service (CPU consumption) in a preforked multi-processing module.
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.39
Apache Http Server 2.0.41
Apache Http Server 2.0.32
Apache Http Server 2.0.38
Apache Http Server 2.0.40
Apache Http Server 2.0.36
Apache Http Server 2.0.28
Apache Http Server 2.0
NA
CVE-2002-0654
Apache 2.0 up to and including 2.0.39 on Windows, OS2, and Netware allows remote malicious users to determine the full pathname of the server via (1) a request for a .var file, which leaks the pathname in the resulting error message, or (2) via an error message that occurs when a...
Apache Http Server 2.0.28
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.32
Apache Http Server 2.0.34
Apache Http Server 2.0.39
Apache Http Server 2.0.38
Apache Http Server 2.0.36
Apache Http Server 2.0
1 EDB exploit
NA
CVE-2002-0661
Directory traversal vulnerability in Apache 2.0 up to and including 2.0.39 on Windows, OS2, and Netware allows remote malicious users to read arbitrary files and execute commands via .. (dot dot) sequences containing \ (backslash) characters.
Apache Http Server 2.0.28
Apache Http Server 2.0.35
Apache Http Server 2.0.37
Apache Http Server 2.0.32
Apache Http Server 2.0.34
Apache Http Server 2.0.39
Apache Http Server 2.0.38
Apache Http Server 2.0.36
Apache Http Server 2.0
1 EDB exploit
NA
CVE-2002-0240
PHP, when installed with Apache and configured to search for index.php as a default web page, allows remote malicious users to obtain the full pathname of the server via the HTTP OPTIONS method, which reveals the pathname in the resulting error message.
Apache Http Server 2.0.28
NA
CVE-2002-0249
PHP for Windows, when installed on Apache 2.0.28 beta as a standalone CGI module, allows remote malicious users to obtain the physical path of the php.exe via a request with malformed arguments such as /123, which leaks the pathname in the error message.
Apache Http Server 2.0.28
NA
CVE-2002-1592
The ap_log_rerror function in Apache 2.0 up to and including 2.035, when a CGI application encounters an error, sends error messages to the client that include the full path for the server, which allows remote malicious users to obtain sensitive information.
Apache Http Server 2.0.35
Apache Http Server 2.0.32
Apache Http Server 2.0.28
Apache Http Server 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3