Debian Apache2 vulnerabilities

CVE-2010-2068 [MEDIUM] CVE-2010-2068: apache2 - mod_proxy_http.c in mod_proxy_http in the Apache HTTP Server 2.2.9 through 2.2.1... mod_proxy_http.c in mod_proxy_http in the Apache HTTP Server 2.2.9 through 2.2.15, 2.3.4-alpha, and 2.3.5-alpha on Windows, NetWare, and OS/2, in certain configurations involving proxy worker pools, does not properly detect timeouts, which allows remote attackers to obtain a potentially sensitive response intended for a different client in opportunistic circumstance

CVE-2009-1891 [HIGH] CVE-2009-1891: apache2 - The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files... The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service (CPU consumption). Scope: local bookworm: resolved (fixed in 2.2.11-7) bullseye: resolved (fixed in 2.2.11-7) forky: resolved (fixed in 2.2.11-7) sid: resolv

CVE-2009-1890 [HIGH] CVE-2009-1890: apache2 - The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in th... The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which allows remote attackers to cause a denial of service (CPU consumption) via crafted requests. Scope: local bookworm: resolv

CVE-2009-3555 [MEDIUM] CVE-2009-3555: apache2 - The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Micr... The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does not properly associate reneg

CVE-2009-1195 [MEDIUM] CVE-2009-1195: apache2 - The Apache HTTP Server 2.2.11 and earlier 2.2 versions does not properly handle ... The Apache HTTP Server 2.2.11 and earlier 2.2 versions does not properly handle Options=IncludesNOEXEC in the AllowOverride directive, which allows local users to gain privileges by configuring (1) Options Includes, (2) Options +Includes, or (3) Options +IncludesNOEXEC in a .htaccess file, and then inserting an exec element in a .shtml file. Scope: local bookworm: r

CVE-2009-1191 [MEDIUM] CVE-2009-1191: apache2 - mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 all... mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 allows remote attackers to obtain sensitive response data, intended for a client that sent an earlier POST request with no request body, via an HTTP request. Scope: local bookworm: resolved (fixed in 2.2.11-4) bullseye: resolved (fixed in 2.2.11-4) forky: resolved (fixed in 2.2.11-4) sid: r

CVE-2009-3094 [LOW] CVE-2009-3094: apache2 - The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_... The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service (NULL pointer dereference and child process crash) via a malformed reply to an EPSV command. Scope: local bookworm: resolved (fixed in 2.2.13-2) bullseye: resolved (fixed in 2.2.13-

CVE-2009-3095 [MEDIUM] CVE-2009-3095: apache2 - The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to by... The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. Scope: local bookworm: resolved (fixed in 2.2.1

CVE-2008-1678 [MEDIUM] CVE-2008-1678: apache2 - Memory leak in the zlib_stateful_init function in crypto/comp/c_zlib.c in libssl... Memory leak in the zlib_stateful_init function in crypto/comp/c_zlib.c in libssl in OpenSSL 0.9.8f through 0.9.8h allows remote attackers to cause a denial of service (memory consumption) via multiple calls, as demonstrated by initial SSL client handshakes to the Apache HTTP Server mod_ssl that specify a compression algorithm. Scope: local bookworm: resolved (fixed

CVE-2008-2168 [MEDIUM] CVE-2008-2168: apache2 - Cross-site scripting (XSS) vulnerability in Apache 2.2.6 and earlier allows remo... Cross-site scripting (XSS) vulnerability in Apache 2.2.6 and earlier allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded URLs that are not properly handled when displaying the 403 Forbidden error page. Scope: local bookworm: resolved (fixed in 2.2.8-1) bullseye: resolved (fixed in 2.2.8-1) forky: resolved (fixed in 2.2.8-1) sid: resolved

CVE-2008-2364 [MEDIUM] CVE-2008-2364: apache2 - The ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy... The ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server 2.0.63 and 2.2.8 does not limit the number of forwarded interim responses, which allows remote HTTP servers to cause a denial of service (memory consumption) via a large number of interim responses. Scope: local bookworm: resolved (fixed in 2.2.9-1) bull

CVE-2008-0455 [MEDIUM] CVE-2008-0455: apache2 - Cross-site scripting (XSS) vulnerability in the mod_negotiation module in the Ap... Cross-site scripting (XSS) vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary web script or HTML by uploading a file with a name containing XSS sequences and a file extensio

CVE-2008-2939 [MEDIUM] CVE-2008-2939: apache2 - Cross-site scripting (XSS) vulnerability in proxy_ftp.c in the mod_proxy_ftp mod... Cross-site scripting (XSS) vulnerability in proxy_ftp.c in the mod_proxy_ftp module in Apache 2.0.63 and earlier, and mod_proxy_ftp.c in the mod_proxy_ftp module in Apache 2.2.9 and earlier 2.2 versions, allows remote attackers to inject arbitrary web script or HTML via a wildcard in the last directory component in the pathname in an FTP URI. Scope: local bookworm:

CVE-2008-0456 [LOW] CVE-2008-0456: apache2 - CRLF injection vulnerability in the mod_negotiation module in the Apache HTTP Se... CRLF injection vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks by uploading a file with a multi-line name containing

CVE-2008-0005 [MEDIUM] CVE-2008-0005: apache2 - mod_proxy_ftp in Apache 2.2.x before 2.2.7-dev, 2.0.x before 2.0.62-dev, and 1.3... mod_proxy_ftp in Apache 2.2.x before 2.2.7-dev, 2.0.x before 2.0.62-dev, and 1.3.x before 1.3.40-dev does not define a charset, which allows remote attackers to conduct cross-site scripting (XSS) attacks using UTF-7 encoding. Scope: local bookworm: resolved (fixed in 2.2.8-1) bullseye: resolved (fixed in 2.2.8-1) forky: resolved (fixed in 2.2.8-1) sid: resolved (fix

CVE-2007-4465 [MEDIUM] CVE-2007-4465: apache2 - Cross-site scripting (XSS) vulnerability in mod_autoindex.c in the Apache HTTP S... Cross-site scripting (XSS) vulnerability in mod_autoindex.c in the Apache HTTP Server before 2.2.6, when the charset on a server-generated page is not defined, allows remote attackers to inject arbitrary web script or HTML via the P parameter using the UTF-7 charset. NOTE: it could be argued that this issue is due to a design limitation of browsers that attempt to p

CVE-2007-6750 [MEDIUM] CVE-2007-6750: apache2 - The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of ... The Apache HTTP Server 1.x and 2.x allows remote attackers to cause a denial of service (daemon outage) via partial HTTP requests, as demonstrated by Slowloris, related to the lack of the mod_reqtimeout module in versions before 2.2.15. Scope: local bookworm: resolved (fixed in 2.2.15-3) bullseye: resolved (fixed in 2.2.15-3) forky: resolved (fixed in 2.2.15-3) sid:

CVE-2007-0086 [HIGH] CVE-2007-0086: apache2 - The Apache HTTP Server, when accessed through a TCP connection with a large wind... The Apache HTTP Server, when accessed through a TCP connection with a large window size, allows remote attackers to cause a denial of service (network bandwidth consumption) via a Range header that specifies multiple copies of the same fragment. NOTE: the severity of this issue has been disputed by third parties, who state that the large window size required by the at

CVE-2007-6421 [LOW] CVE-2007-6421: apache2 - Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balanc... Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) ss, (2) wr, or (3) rr parameters, or (4) the URL. Scope: local bookworm: resolved (fixed in 2.2.8-1) bullseye: resolved (fixed in 2.2.8-1) forky: resolved (fixed in 2.

CVE-2007-6203 [MEDIUM] CVE-2007-6203: apache2 - Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier h... Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a "413 Request Entity Too Large" error message, which might allow cross-site scripting (XSS) style attacks using web client components that can send arbitrary headers in requests, as demonstrated via an HTTP request containing an in