Apache: >> Http Server Security Vulnerabilities
Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the "sioux" vulnerability.
CVSS Score
10.0
EPSS Score
0.036
Published
1998-08-07
Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters.
CVSS Score
5.0
EPSS Score
0.156
Published
1997-12-30
Apache httpd cookie buffer overflow for versions 1.1.1 and earlier.
CVSS Score
7.5
EPSS Score
0.021
Published
1997-09-01
ScriptAlias directory in NCSA and Apache httpd allowed attackers to read CGI programs.
CVSS Score
7.5
EPSS Score
0.092
Published
1997-01-01
List of arbitrary files on Web host via nph-test-cgi script.
CVSS Score
7.5
EPSS Score
0.132
Published
1996-12-10
test-cgi program allows an attacker to list files on the server.
CVSS Score
5.0
EPSS Score
0.697
Published
1996-04-01
phf CGI program allows remote command execution through shell metacharacters.
CVSS Score
10.0
EPSS Score
0.9
Published
1996-03-20
Page 33