Description
Apache before 2.0.44, when running on unpatched Windows 9x and Me operating systems, allows remote attackers to cause a denial of service or execute arbitrary code via an HTTP request containing MS-DOS device names.
Remediation
References
Related Vulnerabilities
OpenSSL Improper Authentication Vulnerability (CVE-2023-2975)
Drupal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-25277)
Oracle JRE CVE-2013-0351 Vulnerability (CVE-2013-0351)
Resin Application Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2969)