| Max CVSS | 7.5 | Min CVSS | 4.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2002-0653 | 4.6 |
Off-by-one buffer overflow in the ssl_compat_directive function, as called by the rewrite_command hook for mod_ssl Apache module 2.8.9 and earlier, allows local users to execute arbitrary code as the Apache server user via .htaccess files with long e
|
02-02-2024 - 02:50 | 11-07-2002 - 04:00 | |
| CVE-2002-0392 | 7.5 |
Apache 1.3 through 1.3.24, and Apache 2.0 through 2.0.36, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a chunk-encoded HTTP request that causes Apache to use an incorrect size.
|
15-07-2021 - 20:39 | 03-07-2002 - 04:00 | |
| CVE-2002-0840 | 6.8 |
Cross-site scripting (XSS) vulnerability in the default error page of Apache 2.0 before 2.0.43, and 1.3.x up to 1.3.26, when UseCanonicalName is "Off" and support for wildcard DNS is present, allows remote attackers to execute script as other web pag
|
06-06-2021 - 11:15 | 11-10-2002 - 04:00 | |
| CVE-2002-1157 | 7.5 |
Cross-site scripting vulnerability in the mod_ssl Apache module 2.8.9 and earlier, when UseCanonicalName is off and wildcard DNS is enabled, allows remote attackers to execute script as other web site visitors, via the server name in an HTTPS respons
|
05-09-2008 - 20:29 | 04-11-2002 - 05:00 |