VulnerableCode Package Details - pkg:apache/httpd@1.3.42

Search for packages

Vulnerability	Summary	Fixed by
VCID-wyfa-5v5x-aaam Aliases: CVE-2011-3368	The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character.	2.0.1 Affected by 0 other vulnerabilities. 2.0.38 Affected by 0 other vulnerabilities. 2.0.41 Affected by 0 other vulnerabilities. 2.0.56 Affected by 0 other vulnerabilities. 2.0.60 Affected by 0 other vulnerabilities. 2.0.62 Affected by 0 other vulnerabilities. 2.0.65 Affected by 0 other vulnerabilities. 2.2.1 Affected by 0 other vulnerabilities. 2.2.7 Affected by 0 other vulnerabilities. 2.2.22 Affected by 21 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-wyfa-5v5x-aaam
Aliases:
CVE-2011-3368

The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character.

2.0.1
Affected by 0 other vulnerabilities.

2.0.38
Affected by 0 other vulnerabilities.

2.0.41
Affected by 0 other vulnerabilities.

2.0.56
Affected by 0 other vulnerabilities.

2.0.60
Affected by 0 other vulnerabilities.

2.0.62
Affected by 0 other vulnerabilities.

2.0.65
Affected by 0 other vulnerabilities.

2.2.1
Affected by 0 other vulnerabilities.

2.2.7
Affected by 0 other vulnerabilities.

2.2.22
Affected by 21 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-ncrq-j3f7-aaag	CVE-2010-0010 rhn-apache: buffer overflow via integer overflow vulnerability on 64bit platforms	CVE-2010-0010

Vulnerability

Summary

Aliases

VCID-ncrq-j3f7-aaag

CVE-2010-0010 rhn-apache: buffer overflow via integer overflow vulnerability on 64bit platforms

CVE-2010-0010

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T12:34:43.342497+00:00	Apache HTTPD Importer	Affected by	VCID-wyfa-5v5x-aaam	https://httpd.apache.org/security/json/CVE-2011-3368.json	36.0.0
2025-03-28T12:34:40.673593+00:00	Apache HTTPD Importer	Fixing	VCID-ncrq-j3f7-aaag	https://httpd.apache.org/security/json/CVE-2010-0010.json	36.0.0
2024-11-18T22:52:39.363823+00:00	Apache HTTPD Importer	Affected by	VCID-wyfa-5v5x-aaam	https://httpd.apache.org/security/json/CVE-2011-3368.json	34.3.2
2024-11-18T22:52:34.487136+00:00	Apache HTTPD Importer	Fixing	VCID-ncrq-j3f7-aaag	https://httpd.apache.org/security/json/CVE-2010-0010.json	34.3.2
2024-01-04T01:33:30.362025+00:00	Apache HTTPD Importer	Affected by	VCID-wyfa-5v5x-aaam	https://httpd.apache.org/security/json/CVE-2011-3368.json	34.0.0rc1
2024-01-04T01:33:27.782937+00:00	Apache HTTPD Importer	Fixing	VCID-ncrq-j3f7-aaag	https://httpd.apache.org/security/json/CVE-2010-0010.json	34.0.0rc1