Search for packages
| purl | pkg:apache/httpd@1.3.36 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-44gh-afxy-aaad
Aliases: CVE-2007-3304 |
Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the worker_score and process_score arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer." |
Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 22 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 54 other vulnerabilities. Affected by 54 other vulnerabilities. |
|
VCID-ftdm-put6-aaaf
Aliases: CVE-2007-5000 |
Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
Affected by 2 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 19 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 49 other vulnerabilities. |
|
VCID-kjcr-z95a-aaae
Aliases: CVE-2007-6388 |
Cross-site scripting (XSS) vulnerability in mod_status in the Apache HTTP Server 2.2.0 through 2.2.6, 2.0.35 through 2.0.61, and 1.3.2 through 1.3.39, when the server-status page is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
Affected by 2 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 19 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 49 other vulnerabilities. |
|
VCID-mjhv-u1xn-aaaa
Aliases: CVE-2006-3747 |
Off-by-one error in the ldap scheme handling in the Rewrite module (mod_rewrite) in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted URLs that are not properly handled using certain rewrite rules. |
Affected by 6 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 26 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 58 other vulnerabilities. |
|
VCID-ncrq-j3f7-aaag
Aliases: CVE-2010-0010 |
CVE-2010-0010 rhn-apache: buffer overflow via integer overflow vulnerability on 64bit platforms |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
|
VCID-nm2g-nz56-aaas
Aliases: CVE-2006-5752 |
Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apache HTTP Server (httpd), when ExtendedStatus is enabled and a public server-status page is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving charsets with browsers that perform "charset detection" when the content-type is not specified. |
Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 22 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 54 other vulnerabilities. Affected by 54 other vulnerabilities. |
|
VCID-wyfa-5v5x-aaam
Aliases: CVE-2011-3368 |
The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 21 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T12:34:43.323076+00:00 | Apache HTTPD Importer | Affected by | VCID-wyfa-5v5x-aaam | https://httpd.apache.org/security/json/CVE-2011-3368.json | 36.0.0 |
| 2025-03-28T12:34:40.654172+00:00 | Apache HTTPD Importer | Affected by | VCID-ncrq-j3f7-aaag | https://httpd.apache.org/security/json/CVE-2010-0010.json | 36.0.0 |
| 2025-03-28T12:34:36.197649+00:00 | Apache HTTPD Importer | Affected by | VCID-kjcr-z95a-aaae | https://httpd.apache.org/security/json/CVE-2007-6388.json | 36.0.0 |
| 2025-03-28T12:34:35.428080+00:00 | Apache HTTPD Importer | Affected by | VCID-ftdm-put6-aaaf | https://httpd.apache.org/security/json/CVE-2007-5000.json | 36.0.0 |
| 2025-03-28T12:34:34.444580+00:00 | Apache HTTPD Importer | Affected by | VCID-44gh-afxy-aaad | https://httpd.apache.org/security/json/CVE-2007-3304.json | 36.0.0 |
| 2025-03-28T12:34:33.468656+00:00 | Apache HTTPD Importer | Affected by | VCID-nm2g-nz56-aaas | https://httpd.apache.org/security/json/CVE-2006-5752.json | 36.0.0 |
| 2025-03-28T12:34:32.938686+00:00 | Apache HTTPD Importer | Affected by | VCID-mjhv-u1xn-aaaa | https://httpd.apache.org/security/json/CVE-2006-3747.json | 36.0.0 |
| 2024-11-18T22:52:39.344742+00:00 | Apache HTTPD Importer | Affected by | VCID-wyfa-5v5x-aaam | https://httpd.apache.org/security/json/CVE-2011-3368.json | 34.3.2 |
| 2024-11-18T22:52:34.468506+00:00 | Apache HTTPD Importer | Affected by | VCID-ncrq-j3f7-aaag | https://httpd.apache.org/security/json/CVE-2010-0010.json | 34.3.2 |
| 2024-11-18T22:52:25.834957+00:00 | Apache HTTPD Importer | Affected by | VCID-kjcr-z95a-aaae | https://httpd.apache.org/security/json/CVE-2007-6388.json | 34.3.2 |
| 2024-11-18T22:52:24.678320+00:00 | Apache HTTPD Importer | Affected by | VCID-ftdm-put6-aaaf | https://httpd.apache.org/security/json/CVE-2007-5000.json | 34.3.2 |
| 2024-11-18T22:52:23.007722+00:00 | Apache HTTPD Importer | Affected by | VCID-44gh-afxy-aaad | https://httpd.apache.org/security/json/CVE-2007-3304.json | 34.3.2 |
| 2024-09-18T07:21:09.772777+00:00 | Apache HTTPD Importer | Affected by | VCID-nm2g-nz56-aaas | https://httpd.apache.org/security/json/CVE-2006-5752.json | 34.0.1 |
| 2024-09-18T07:21:09.276699+00:00 | Apache HTTPD Importer | Affected by | VCID-mjhv-u1xn-aaaa | https://httpd.apache.org/security/json/CVE-2006-3747.json | 34.0.1 |
| 2024-01-04T01:33:30.343144+00:00 | Apache HTTPD Importer | Affected by | VCID-wyfa-5v5x-aaam | https://httpd.apache.org/security/json/CVE-2011-3368.json | 34.0.0rc1 |
| 2024-01-04T01:33:27.764160+00:00 | Apache HTTPD Importer | Affected by | VCID-ncrq-j3f7-aaag | https://httpd.apache.org/security/json/CVE-2010-0010.json | 34.0.0rc1 |
| 2024-01-04T01:33:23.469136+00:00 | Apache HTTPD Importer | Affected by | VCID-kjcr-z95a-aaae | https://httpd.apache.org/security/json/CVE-2007-6388.json | 34.0.0rc1 |
| 2024-01-04T01:33:22.742882+00:00 | Apache HTTPD Importer | Affected by | VCID-ftdm-put6-aaaf | https://httpd.apache.org/security/json/CVE-2007-5000.json | 34.0.0rc1 |
| 2024-01-04T01:33:21.797366+00:00 | Apache HTTPD Importer | Affected by | VCID-44gh-afxy-aaad | https://httpd.apache.org/security/json/CVE-2007-3304.json | 34.0.0rc1 |
| 2024-01-04T01:33:20.864227+00:00 | Apache HTTPD Importer | Affected by | VCID-nm2g-nz56-aaas | https://httpd.apache.org/security/json/CVE-2006-5752.json | 34.0.0rc1 |
| 2024-01-04T01:33:20.345825+00:00 | Apache HTTPD Importer | Affected by | VCID-mjhv-u1xn-aaaa | https://httpd.apache.org/security/json/CVE-2006-3747.json | 34.0.0rc1 |