Description
The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service (NULL pointer dereference and child process crash) via a malformed reply to an EPSV command.
Remediation
References
Related Vulnerabilities
WordPress Plugin Clone Cross-Site Scripting (2.1.1)
WordPress Plugin Shopping Cart & eCommerce Store Information Disclosure (2.0.5)
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-9591)
Jetty Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2023-26048)