Description

Apache webserver 2.0.52 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an HTTP GET request with a MIME header containing multiple lines with a large number of space characters.

Remediation

References

CVE-2004-0942

Related Vulnerabilities

WordPress Plugin Welcome Announcement Multiple Cross-Site Scripting Vulnerabilities (1.0.5)

MODX Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8774)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1817)

Atlassian Jira Improper Privilege Management Vulnerability (CVE-2018-13400)

AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2024-21490)

Severity

Medium

Classification

CVE-2004-0942

Tags

Missing Update Known Vulnerabilities