Description
A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2006-0257 Vulnerability (CVE-2006-0257)
WordPress Plugin Annonces 'abspath' Parameter Remote File Include (1.2.0.0)
WordPress Plugin GiveWP-Donation and Fundraising Platform Cross-Site Scripting (2.11.3)
Apache Denial of service in mod_lua r:parsebody Vulnerability (CVE-2022-29404)
OpenSSL Improper Authentication Vulnerability (CVE-2009-0591)