Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
httpdApache Team FoundationHTTPD:A79620D4A49D1F0D9BE6A18FD0CA234C
HistorySep 04, 2009 - 12:00 a.m.

Apache Httpd < 2.2.14 : mod_proxy_ftp DoS

2009-09-0400:00:00
Apache Team Foundation
httpd.apache.org
22

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

EPSS

0.002

Percentile

54.6%

JSON

A NULL pointer dereference flaw was found in the mod_proxy_ftp module. A malicious FTP server to which requests are being proxied could use this flaw to crash an httpd child process via a malformed reply to the EPSV or PASV commands, resulting in a limited denial of service.

Affected configurations

Vulners
Node
apacheapache_httpdMatch2.2.13
OR
apacheapache_httpdMatch2.2.12
OR
apacheapache_httpdMatch2.2.11
OR
apacheapache_httpdMatch2.2.10
OR
apacheapache_httpdMatch2.2.9
OR
apacheapache_httpdMatch2.2.8
OR
apacheapache_httpdMatch2.2.6
OR
apacheapache_httpdMatch2.2.5
OR
apacheapache_httpdMatch2.2.4
OR
apacheapache_httpdMatch2.2.3
OR
apacheapache_httpdMatch2.2.2
OR
apacheapache_httpdMatch2.2.0

Related

cvelist 1
debiancve 1
f5 2
seebug 2
openvas 43
prion 1
nvd 1
veracode 1
ubuntucve 1
cve 1
httpd 1
securityvulns 3
nessus 27
slackware 1
fedora 3
debian 2
oraclelinux 2
redhat 4
ubuntu 1
osv 1
centos 2
altlinux 3
suse 1
kaspersky 1
cvelist
cvelist
CVE-2009-3094
2009-09-08 18:00:00
debiancve
debiancve
CVE-2009-3094
2009-09-08 18:30:00
f5
f5
SOL22234807 - Apache vulnerability CVE-2009-3094
2015-12-23 00:00:00
K22234807 : Apache vulnerability CVE-2009-3094
2015-12-23 00:00:00
seebug
seebug
Apache mod_proxy_ftpζ¨‘ε—η©ΊζŒ‡ι’ˆεΌ•η”¨ζ‹’η»ζœεŠ‘ζΌζ΄ž
2009-11-13 00:00:00
apache2 vulnerabilities
2009-11-20 00:00:00
openvas
openvas
Apache 'mod_proxy_ftp' Module Denial Of Service Vulnerability (Linux)
2009-09-16 00:00:00
Apache HTTP Server 'mod_proxy_ftp' Module DoS Vulnerability
2009-09-16 00:00:00
Mandrake Security Advisory MDVSA-2009:240 (apache)
2009-09-28 00:00:00
prion
prion
Null pointer dereference
2009-09-08 18:30:00
nvd
nvd
CVE-2009-3094
2009-09-08 18:30:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:36:55
ubuntucve
ubuntucve
CVE-2009-3094
2009-09-08 00:00:00
cve
cve
CVE-2009-3094
2009-09-08 18:30:00
httpd
httpd
Apache Httpd < 2.0.64 : mod_proxy_ftp DoS
2009-09-04 00:00:00
securityvulns
securityvulns
[ MDVSA-2009:240 ] apache
2009-09-23 00:00:00
Apache mod_proxy_ftp multiple security vulnerabilities
2010-03-31 00:00:00
[security bulletin] HPSBOV02506 SSRT090244 rev.1 - HP Secure Web Server for OpenVMS &#40;based on Apache&#41; CSWS, Remote Denial of Service &#40;DoS&#41;, Unauthorized Disclosure of Information, Unauthorized Modification of Information
2010-03-31 00:00:00
nessus
nessus
Slackware 12.0 / 12.1 / 12.2 / 13.0 / current : httpd (SSA:2010-024-01)
2010-01-25 00:00:00
Mandriva Linux Security Advisory : apache (MDVSA-2009:240)
2009-09-23 00:00:00
Fedora 10 : httpd-2.2.14-1.fc10 (2009-12604)
2009-12-10 00:00:00
slackware
slackware
[slackware-security] httpd
2010-01-25 05:19:48
fedora
fedora
[SECURITY] Fedora 10 Update: httpd-2.2.14-1.fc10
2009-12-10 04:17:40
[SECURITY] Fedora 11 Update: httpd-2.2.14-1.fc11
2010-02-27 03:41:04
[SECURITY] Fedora 12 Update: httpd-2.2.14-1.fc12
2009-12-18 04:22:30
debian
debian
[SECURITY] [DSA-1934-1] New apache2 packages fix several issues
2009-11-16 19:30:33
[SECURITY] [DSA-1934-1] New apache2 packages fix several issues
2009-11-16 19:30:33
oraclelinux
oraclelinux
httpd security update
2009-11-11 00:00:00
httpd security update
2009-11-11 00:00:00
redhat
redhat
(RHSA-2010:0011) Moderate: httpd and httpd22 security update
2010-01-06 00:00:00
(RHSA-2009:1579) Moderate: httpd security update
2009-11-11 00:00:00
(RHSA-2009:1580) Moderate: httpd security update
2009-11-11 00:00:00
ubuntu
ubuntu
Apache vulnerabilities
2009-11-19 00:00:00
osv
osv
apache2 - several issues
2009-11-16 00:00:00
centos
centos
httpd, mod_ssl security update
2009-11-12 22:37:02
httpd, mod_ssl security update
2009-11-12 22:39:15
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.2.14-alt1
2009-10-06 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.14-alt1
2009-10-06 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.14-alt1
2009-10-06 00:00:00
suse
suse
potential code execution in apache2,libapr1
2009-10-26 13:21:56
kaspersky
kaspersky
KLA10066 Multiple vulnerabilities in Apache httpd
2010-10-19 00:00:00

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

EPSS

0.002

Percentile

54.6%

JSON
Related for HTTPD:A79620D4A49D1F0D9BE6A18FD0CA234C
cvelist1debiancve1f52seebug2openvas43prion1nvd1veracode1ubuntucve1cve1httpd1securityvulns3nessus27slackware1fedora3debian2oraclelinux2redhat4ubuntu1osv1centos2altlinux3suse1kaspersky1