Apache : Security Vulnerabilities, CVEs, Published In September 2010
Untrusted search path vulnerability in a certain Debian GNU/Linux patch for the couchdb script in CouchDB 0.8.0 allows local users to gain privileges via a crafted shared library in the current working directory.
Max CVSS
6.9
EPSS Score
0.04%
Published
2010-09-14
Updated
2010-09-14
Apache Traffic Server before 2.0.1, and 2.1.x before 2.1.2-unstable, does not properly choose DNS source ports and transaction IDs, and does not properly use DNS query fields to validate responses, which makes it easier for man-in-the-middle attackers to poison the internal DNS cache via a crafted response.
Max CVSS
4.3
EPSS Score
0.11%
Published
2010-09-13
Updated
2018-10-10
2 vulnerabilities found