Vulnerabilities > Apache
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-12-31 | CVE-1999-1293 | Unspecified vulnerability in Apache Http Server mod_proxy in Apache 1.2.5 and earlier allows remote attackers to cause a denial of service via malformed FTP commands, which causes Apache to dump core. | 10.0 |
| 1999-12-12 | CVE-1999-0289 | Unspecified vulnerability in Apache Http Server The Apache web server for Win32 may provide access to restricted files when a . | 5.0 |
| 1999-09-13 | CVE-1999-1053 | Remote Command Execution vulnerability in Guestbook CGI guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote attackers to execute arbitrary commands when guestbook.pl is run on Apache 1.3.9 and possibly other versions, since Apache allows other closing sequences besides "-->". | 7.5 |
| 1999-09-03 | CVE-1999-0926 | Unspecified vulnerability in Apache Http Server 1.2.5 Apache allows remote attackers to conduct a denial of service via a large number of MIME headers. | 10.0 |
| 1999-06-06 | CVE-1999-1237 | Classic Buffer Overflow vulnerability in Apache Http Server Multiple buffer overflows in smbvalid/smbval SMB authentication library, as used in Apache::AuthenSmb and possibly other modules, allows remote attackers to execute arbitrary commands via (1) a long username, (2) a long password, and (3) other unspecified methods. | 10.0 |
| 1999-06-03 | CVE-1999-1412 | A possible interaction between Apple MacOS X release 1.0 and Apache HTTP server allows remote attackers to cause a denial of service (crash) via a flood of HTTP GET requests to CGI programs, which generates a large number of processes. | 5.0 |
| 1999-01-17 | CVE-1999-0678 | A default configuration of Apache on Debian GNU/Linux sets the ServerRoot to /usr/doc, which allows remote users to read documentation files for the entire server. | 5.0 |
| 1997-12-30 | CVE-1999-0107 | Unspecified vulnerability in Apache Http Server Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters. | 5.0 |
| 1997-09-01 | CVE-1999-0071 | Unspecified vulnerability in Apache Http Server 1.1.1 Apache httpd cookie buffer overflow for versions 1.1.1 and earlier. | 7.5 |
| 1997-01-01 | CVE-1999-0236 | Information Exposure vulnerability in multiple products ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs. | 5.0 |