apache/http_server: The latest CVE Vulnerabilities and Exploits for Penetration Test
apache/http_server Vulnerability Summary Vendor name: apache Product name: http_server Total vulnerabilities: 249 (as 2023-05-04) apache/http_server Vulnerability List CVE-2021-44224: A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash… Published: 2021-12-20T12:15:00 Last Modified: 2022-02-07T16:16:00
Summary
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash (NULL pointer dereference) or, for configurations mixing forward and reverse proxy declarations, can allow for requests to be directed to a declared Unix Domain Socket endpoint (Server Side Request Forgery).