Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache http server 1.0 vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-1999-0107
Buffer overflow in Apache 1.2.5 and previous versions allows a remote malicious user to cause a denial of service with a large number of GET requests containing a large number of / characters.
Apache Http Server 1.0.5
Apache Http Server 0.8.11
Apache Http Server 1.1.1
Apache Http Server 1.0.2
Apache Http Server 1.1
Apache Http Server 1.2.5
Apache Http Server 1.0
Apache Http Server 1.0.3
Apache Http Server 0.8.14
1 EDB exploit
445
VMScore
CVE-2000-0913
mod_rewrite in Apache 1.3.12 and previous versions allows remote malicious users to read arbitrary files if a RewriteRule directive is expanded to include a filename whose name contains a regular expression.
Apache Http Server 1.0.5
Apache Http Server 0.8.11
Apache Http Server 1.1.1
Apache Http Server 1.3.11
Apache Http Server 1.0.2
Apache Http Server 1.1
Apache Http Server 1.0
Apache Http Server 1.0.3
Apache Http Server 1.3.12
Apache Http Server 0.8.14
505
VMScore
CVE-2004-0173
Directory traversal vulnerability in Apache 1.3.29 and previous versions, and Apache 2.0.48 and previous versions, when running on Cygwin, allows remote malicious users to read arbitrary files via a URL containing "..%5C" (dot dot encoded backslash) sequences.
Apache Http Server 1.0.3
Apache Http Server 1.0.5
Apache Http Server 1.1
Apache Http Server 1.1.1
Apache Http Server 1.0
Apache Http Server 1.0.2
Apache Http Server 1.3
Apache Http Server 0.8.11
Apache Http Server 0.8.14
Apache Http Server 1.2
Apache Http Server 1.2.5
1 EDB exploit
605
VMScore
CVE-2010-0010
Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server prior to 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size th...
Apache Http Server 1.3.38
Apache Http Server 1.3.23
Apache Http Server 1.3.27
Apache Http Server 1.3.10
Apache Http Server 1.0.5
Apache Http Server 0.8.11
Apache Http Server 1.3.33
Apache Http Server 1.3.36
Apache Http Server 1.3.1
Apache Http Server 1.3.25
Apache Http Server 1.3.28
Apache Http Server 1.3.19
Apache Http Server 1.3.40
Apache Http Server 1.3.31
Apache Http Server 1.3.24
Apache Http Server 1.3.20
Apache Http Server 1.3.35
Apache Http Server 1.1
Apache Http Server 1.3.2
Apache Http Server 1.3.34
Apache Http Server 1.3.4
Apache Http Server 1.2.5
445
VMScore
CVE-2004-0263
PHP 4.3.4 and previous versions in Apache 1.x and 2.x (mod_php) can leak global variables between virtual hosts that are handled by the same Apache child process but have different settings, which could allow remote malicious users to obtain sensitive information.
Apache Http Server 1.0.3
Apache Http Server 1.0.5
Apache Http Server 1.3.11
Apache Http Server 1.3.12
Apache Http Server 1.2
Apache Http Server 1.2.5
Apache Http Server 1.3.18
Apache Http Server 1.3.19
Apache Http Server 1.3.20
Apache Http Server 1.3.28
Apache Http Server 1.3.29
Apache Http Server 2.0.28
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.9
Ibm Http Server 1.3.19
Apache Http Server 1.3.24
Apache Http Server 1.3.25
Apache Http Server 1.3.6
Apache Http Server 1.3.7
Apache Http Server 2.0.36
Apache Http Server 2.0.37
605
VMScore
CVE-2006-4154
Format string vulnerability in the mod_tcl module 1.0 for Apache 2.x allows context-dependent malicious users to execute arbitrary code via format string specifiers that are not properly handled in a set_var function call in (1) tcl_cmds.c and (2) tcl_core.c.
Apache Http Server 2.0.28
Apache Http Server 2.0.32
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.48
Apache Http Server 2.0.49
Apache Http Server 2.0.56
Apache Http Server 2.0.57
Apache Http Server 2.1.3
Apache Http Server 2.1.4
Apache Http Server 2.1.5
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.46
Apache Http Server 2.0.47
Apache Http Server 2.0.54
Apache Http Server 2.0.55
Apache Http Server 2.1.1
Apache Http Server 2.1.2
Apache Http Server 2.2.3
Apache Http Server 2.0
Apache Http Server 2.0.35
755
VMScore
CVE-1999-0045
List of arbitrary files on Web host via nph-test-cgi script.
Netscape Communications Server 1.1
Apache Http Server 1.0.5
Apache Http Server 0.8.11
Netscape Enterprise Server 2.0a
Apache Http Server 1.0.2
Apache Http Server 1.1
Apache Http Server 1.0
Apache Http Server 1.0.3
Apache Http Server 0.8.14
Netscape Communications Server 1.12
Netscape Commerce Server 1.12
1 EDB exploit
520
VMScore
CVE-2007-6750
The Apache HTTP Server 1.x and 2.x allows remote malicious users to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the mod_reqtimeout module in versions prior to 2.2.15.
Apache Http Server 1.3.18
Apache Http Server 1.3.17
Apache Http Server 1.3.22
Apache Http Server 1.3.23
Apache Http Server 1.2
Apache Http Server 1.3.16
Apache Http Server 1.3.15
Apache Http Server 1.0.2
Apache Http Server 1.3.34
Apache Http Server 1.3.36
Apache Http Server 1.3.0
Apache Http Server 1.3.38
Apache Http Server 1.3.42
Apache Http Server 1.3.2
Apache Http Server 1.0
Apache Http Server 1.1
Apache Http Server 1.3.1
Apache Http Server 1.3.11
Apache Http Server 1.3.30
Apache Http Server 1.3.31
Apache Http Server 1.3.5
Apache Http Server 1.4.0
1 Nmap script
17 Github repositories
505
VMScore
CVE-1999-1412
A possible interaction between Apple MacOS X release 1.0 and Apache HTTP server allows remote malicious users to cause a denial of service (crash) via a flood of HTTP GET requests to CGI programs, which generates a large number of processes.
Apache Http Server -
Apple Macos 1.0
1 EDB exploit
446
VMScore
CVE-2018-17189
In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up that incoming data. This affects only HTTP/2 (mod_http2) connections.
Apache Http Server 2.4.20
Apache Http Server 2.4.23
Apache Http Server 2.4.25
Apache Http Server 2.4.26
Apache Http Server 2.4.18
Apache Http Server 2.4.17
Apache Http Server 2.4.27
Apache Http Server 2.4.29
Apache Http Server 2.4.28
Apache Http Server 2.4.33
Apache Http Server 2.4.37
Apache Http Server 2.4.30
Apache Http Server 2.4.34
Apache Http Server 2.4.35
Netapp Santricity Cloud Connector -
Netapp Storage Automation Store -
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Debian Debian Linux 9.0
Oracle Retail Xstore Point Of Service 7.1
Oracle Retail Xstore Point Of Service 7.0
Oracle Hospitality Guest Access 4.2.0
2 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »