Headline

CVE-2010-0408: Mandriva | Open, Simple and Innovative

The ap_proxy_ajp_request function in mod_proxy_ajp.c in mod_proxy_ajp in the Apache HTTP Server 2.2.x before 2.2.15 does not properly handle certain situations in which a client sends no request body, which allows remote attackers to cause a denial of service (backend server outage) via a crafted request, related to use of a 500 error code instead of the appropriate 400 error code.

14 years ago

CVE

Open in Source

#linux #dos #apache #perl

One****The Linux desktop
that’s easy to try and easy to keep

Download

Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier, 5.5.29 and earlier, and 5.6.10 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Information Schema.

11 years ago

CVE

Open in Source

#sql #vulnerability #web #windows #google #linux #memcached #java #oracle #kubernetes #intel #auth #zero_day #docker

CVE-2012-0053: Apache HTTP Server 2.2 vulnerabilities

protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.

12 years ago

CVE

Open in Source