Apache : Security Vulnerabilities, CVEs, Published In 1999 CVSS score >= 6
mod_proxy in Apache 1.2.5 and earlier allows remote attackers to cause a denial of service via malformed FTP commands, which causes Apache to dump core.
Max CVSS
10.0
EPSS Score
0.36%
Published
1999-12-31
Updated
2016-10-18
Multiple buffer overflows in smbvalid/smbval SMB authentication library, as used in Apache::AuthenSmb and possibly other modules, allows remote attackers to execute arbitrary commands via (1) a long username, (2) a long password, and (3) other unspecified methods.
Max CVSS
10.0
EPSS Score
0.13%
Published
1999-06-06
Updated
2020-07-21
CVE-1999-1053
Public exploit
guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote attackers to execute arbitrary commands when guestbook.pl is run on Apache 1.3.9 and possibly other versions, since Apache allows other closing sequences besides "-->".
Max CVSS
7.5
EPSS Score
94.36%
Published
1999-09-13
Updated
2008-09-05
Apache allows remote attackers to conduct a denial of service via a large number of MIME headers.
Max CVSS
10.0
EPSS Score
0.39%
Published
1999-09-03
Updated
2008-09-05
4 vulnerabilities found