exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2012-0053

около 14 лет назад

protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.

CVSS2: 4.3

EPSS: Средний

CVE-2012-0053

около 14 лет назад

protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.

CVSS2: 4.3

EPSS: Средний

CVE-2012-0053

около 14 лет назад

protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.

CVSS2: 4.3

EPSS: Средний

CVE-2012-0053

около 14 лет назад

protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not pro ...

CVSS2: 4.3

EPSS: Средний

GHSA-x2wg-fp56-xx79

почти 4 года назад

protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.

EPSS: Средний

ELSA-2012-0323

почти 14 лет назад

ELSA-2012-0323: httpd security update (MODERATE)

EPSS: Низкий

ELSA-2012-0128

почти 14 лет назад

ELSA-2012-0128: httpd security update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2012-0053 protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.	CVSS2: 4.3	66% Средний	около 14 лет назад
CVE-2012-0053 protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.	CVSS2: 4.3	66% Средний	около 14 лет назад
CVE-2012-0053 protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.	CVSS2: 4.3	66% Средний	около 14 лет назад
CVE-2012-0053 protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not pro ...	CVSS2: 4.3	66% Средний	около 14 лет назад
GHSA-x2wg-fp56-xx79 protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.		66% Средний	почти 4 года назад
ELSA-2012-0323 ELSA-2012-0323: httpd security update (MODERATE)			почти 14 лет назад
ELSA-2012-0128 ELSA-2012-0128: httpd security update (MODERATE)			почти 14 лет назад

Уязвимостей на страницу