|Max CVSS||7.1||Min CVSS||4.9||Total Count||4|
|ID||CVSS||Summary||Last (major) update||Published|
The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which al
|10-10-2013 - 23:13||05-07-2009 - 12:30|
mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 allows remote attackers to obtain sensitive response data, intended for a client that sent an earlier POST request with no request body, via an HTTP request.
|10-10-2013 - 23:11||23-04-2009 - 13:30|
The mod_deflate module in Apache httpd 2.2.11 and earlier compresses large files until completion even after the associated network connection is closed, which allows remote attackers to cause a denial of service (CPU consumption).
|06-09-2011 - 22:59||10-07-2009 - 11:30|
The Apache HTTP Server 2.2.11 and earlier 2.2 versions does not properly handle Options=IncludesNOEXEC in the AllowOverride directive, which allows local users to gain privileges by configuring (1) Options Includes, (2) Options +Includes, or (3) Opti
|18-07-2011 - 22:26||28-05-2009 - 16:30|