Description

The ap_get_mime_headers_core function in Apache httpd 2.0.49 allows remote attackers to cause a denial of service (memory exhaustion), and possibly an integer signedness error leading to a heap-based buffer overflow on 64 bit systems, via long header lines with large numbers of space or tab characters.

Remediation

References

CVE-2004-0493

Related Vulnerabilities

WordPress Plugin WordPress Calls to Action Unspecified Vulnerability (2.3.1)

Hiawatha Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2019-8358)

Oracle JRE CVE-2013-5776 Vulnerability (CVE-2013-5776)

Moodle Incorrect Authorization Vulnerability (CVE-2021-20283)

WordPress Plugin oQey Gallery 'gal_id' Parameter SQL Injection (0.4.8)

Severity

Medium

Classification

CVE-2004-0493

Tags

Missing Update Known Vulnerabilities