- Home
- CVEs with nessus.description==The remote host is affected by the vulnerability described in GLSA-200406-16
(Apache 1.3: Buffer overflow in mod_proxy)
A bug in the proxy_util.c file may lead to a remote buffer overflow. To
trigger the vulnerability an attacker would have to get mod_proxy to
connect to a malicous server which returns an invalid (negative)
Content-Length.
Impact :
An attacker could cause a Denial of Service as the Apache child handling
the request, which will die and under some circumstances execute arbitrary
code as the user running Apache, usually 'apache'.
Workaround :
There is no known workaround at this time. All users are encouraged to
upgrade to the latest available version:
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top