Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:18002
HistorySep 14, 2007 - 12:00 a.m.

[Full-disclosure] rPSA-2007-0182-1 httpd mod_ssl

2007-09-1400:00:00
vulners.com
22
JSON

rPath Security Advisory: 2007-0182-1
Published: 2007-09-14
Products: rPath Linux 1
Rating: Severe
Exposure Level Classification:
Remote System User Deterministic Denial of Service
Updated Versions:
httpd=/conary.rpath.com@rpl:devel//1-devel/2.0.61-0.1-1
mod_ssl=/conary.rpath.com@rpl:devel//1-devel/2.0.61-0.1-1

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3304
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3847
https://issues.rpath.com/browse/RPL-1710

Description:
Previous versions of the httpd package are vulnerable to multiple
Denial of Service attacks, one of which allows a remote attacker
to crash mod_proxy using a maliciously crafted HTTP request.

In its default configuration, rPath Linux 1 is not vulnerable to
these attacks.

Note that two additional vulnerabilities fixed in httpd 2.0.61,
CVE-2007-1863 and CVE-2006-5752, were already fixed in a previous
update to rPath Linux.

Copyright 2007 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Related

oraclelinux 7
openvas 69
centos 7
nessus 48
altlinux 9
freebsd 1
redhat 12
suse 1
ubuntu 2
gentoo 1
fedora 6
vmware 2
cve 4
httpd 10
veracode 4
debiancve 4
ubuntucve 4
prion 3
securityvulns 2
checkpoint_advisories 1
seebug 1
slackware 1
oraclelinux
oraclelinux
httpd security, bug fix, and enhancement update
2007-11-19 00:00:00
httpd security, bug fix, and enhancement update
2007-11-27 00:00:00
Moderate: httpd security update
2007-06-26 00:00:00
openvas
openvas
FreeBSD Ports: apache
2008-09-04 00:00:00
Oracle: Security Advisory (ELSA-2007-0746)
2015-10-08 00:00:00
FreeBSD Ports: apache
2008-09-04 00:00:00
centos
centos
httpd, mod_ssl security update
2007-06-27 11:06:14
apache security update
2007-06-26 23:35:19
httpd, mod_ssl security update
2007-06-27 15:34:54
nessus
nessus
FreeBSD : apache -- multiple vulnerabilities (c115271d-602b-11dc-898c-001921ab2fa4)
2007-09-14 00:00:00
RHEL 5 : httpd (RHSA-2007:0556)
2007-06-27 00:00:00
Fedora Core 5 : httpd-2.2.2-1.3 (2007-617)
2007-07-03 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package apache2 version 2.2.5-alt1
2007-08-18 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.4-alt31
2007-07-05 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.4-alt30
2007-07-04 00:00:00
freebsd
freebsd
apache -- multiple vulnerabilities
2007-09-07 00:00:00
redhat
redhat
(RHSA-2007:0556) Moderate: httpd security update
2007-06-26 00:00:00
(RHSA-2007:0557) Moderate: httpd security update
2007-07-13 00:00:00
(RHSA-2007:0533) Moderate: httpd security update
2007-06-27 00:00:00
suse
suse
remote denial of service in apache2
2007-11-19 15:20:20
ubuntu
ubuntu
Apache vulnerabilities
2007-08-17 00:00:00
Apache vulnerabilities
2008-02-04 00:00:00
gentoo
gentoo
Apache: Multiple vulnerabilities
2007-11-07 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: httpd-2.2.6-1.fc7
2007-09-19 02:53:28
[SECURITY] Fedora Core 5 Update: httpd-2.2.2-1.3
2007-07-02 15:01:38
[SECURITY] Fedora Core 6 Update: httpd-2.2.4-2.1.fc6
2007-07-12 22:53:51
vmware
vmware
VMware Hosted products update libpng and Apache HTTP Server
2009-08-20 00:00:00
VMware Hosted products update libpng and Apache HTTP Server
2009-08-20 00:00:00
cve
cve
CVE-2006-5752
2007-06-27 17:30:00
CVE-2007-3304
2007-06-20 22:30:00
CVE-2007-1863
2007-06-27 17:30:00
httpd
httpd
Apache Httpd < 2.0.61 : mod_status cross-site scripting
2006-10-19 00:00:00
Apache Httpd < 1.3.39 : mod_status cross-site scripting
2006-10-19 00:00:00
Apache Httpd < 2.2.6 : mod_status cross-site scripting
2006-10-19 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2020-04-10 00:16:40
Denial Of Service (DoS)
2020-04-10 00:16:41
Denial Of Service (DoS)
2020-04-10 00:16:40
debiancve
debiancve
CVE-2006-5752
2007-06-27 17:30:00
CVE-2007-3304
2007-06-20 22:30:00
CVE-2007-1863
2007-06-27 17:30:00
ubuntucve
ubuntucve
CVE-2006-5752
2007-06-27 00:00:00
CVE-2007-3304
2007-06-20 00:00:00
CVE-2007-1863
2007-06-27 00:00:00
prion
prion
Code injection
2007-06-20 22:30:00
Design/Logic Flaw
2007-06-27 17:30:00
Buffer overflow
2007-08-23 22:17:00
securityvulns
securityvulns
Apache httpd multiple local DoS conditions
2007-06-20 00:00:00
Apache mod_proxy denial of service
2007-09-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache HTTP Server mod_cache Module Denial of Service (CVE-2007-1863)
2008-01-24 00:00:00
seebug
seebug
Apache HTTP Server WorkerθΏ›η¨‹ε€šδΈͺζœ¬εœ°ζ‹’η»ζœεŠ‘ζΌζ΄ž
2007-08-29 00:00:00
slackware
slackware
[slackware-security] apache
2008-02-15 01:23:13
JSON
Related for SECURITYVULNS:DOC:18002
oraclelinux7openvas69centos7nessus48altlinux9freebsd1redhat12suse1ubuntu2gentoo1fedora6vmware2cve4httpd10veracode4debiancve4ubuntucve4prion3securityvulns2checkpoint_advisories1seebug1slackware1