Description
Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied.
Remediation
References
Related Vulnerabilities
XOOPS Other Vulnerability (CVE-2005-3680)
WordPress Plugin Gutenberg Block Editor Toolkit-EditorsKit Remote Code Execution (1.31.5)
Squid CVE-2019-12523 Vulnerability (CVE-2019-12523)
Drupal Core 9.4.x Security Bypass (9.4.0 - 9.4.2)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2356)