National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • Keyword (text search): Apache
There are 1,447 matching records.
Displaying matches 1441 through 1447.
Vuln ID Summary CVSS Severity
CVE-1999-1412

A possible interaction between Apple MacOS X release 1.0 and Apache HTTP server allows remote attackers to cause a denial of service (crash) via a flood of HTTP GET requests to CGI programs, which generates a large number of processes.

Published: June 03, 1999; 12:00:00 AM -04:00
V2: 10.0 HIGH
CVE-1999-0678

A default configuration of Apache on Debian GNU/Linux sets the ServerRoot to /usr/doc, which allows remote users to read documentation files for the entire server.

Published: January 17, 1999; 12:00:00 AM -05:00
V2: 5.0 MEDIUM
CVE-1999-0448

IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote attacker to hide the URL they really request.

Published: January 01, 1999; 12:00:00 AM -05:00
V2: 5.0 MEDIUM
CVE-1999-1199

Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the "sioux" vulnerability.

Published: August 07, 1998; 12:00:00 AM -04:00
V2: 10.0 HIGH
CVE-1999-0107

Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters.

Published: December 30, 1997; 12:00:00 AM -05:00
V2: 5.0 MEDIUM
CVE-1999-0071

Apache httpd cookie buffer overflow for versions 1.1.1 and earlier.

Published: September 01, 1997; 12:00:00 AM -04:00
V2: 7.5 HIGH
CVE-1999-0236

ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs.

Published: January 01, 1997; 12:00:00 AM -05:00
V2: 10.0 HIGH