Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

IBMHttpServer Other Vulnerability (CVE-2004-0492)

Description

Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied.

Remediation

References

Related Vulnerabilities

WordPress Plugin WP Code Highlight.js Cross-Site Scripting (0.6.3)

WordPress Plugin WooCommerce Privilege Escalation (3.5.0)

Moodle Insertion of Sensitive Information into Log File Vulnerability (CVE-2012-1156)

WordPress Plugin GoDaddy Email Marketing Cross-Site Request Forgery (1.1.2)

WordPress Plugin CM Download Manager Arbitrary File Upload (2.8.5)

Severity

Critical

Classification

CVE-2004-0492

Tags

Missing Update Known Vulnerabilities