Description

mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 allows remote attackers to obtain sensitive response data, intended for a client that sent an earlier POST request with no request body, via an HTTP request.

Remediation

References

CVE-2009-1191

Related Vulnerabilities

PHP Other Vulnerability (CVE-2007-1584)

Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5495)

Squid Improper Input Validation Vulnerability (CVE-2020-24606)

MySQL CVE-2020-14633 Vulnerability (CVE-2020-14633)

WordPress Plugin Category Specific RSS feed Subscription Cross-Site Request Forgery (2.0)

Severity

Medium

Classification

CVE-2009-1191

Tags

Missing Update Known Vulnerabilities