Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote malicious users to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache http server 1.3.26 |
||
apache http server 1.3.27 |
||
apache http server 1.3.28 |
||
apache http server 1.3.29 |
||
apache http server 1.3.31 |
||
hp virtualvault 11.0.4 |
||
hp webproxy 2.0 |
||
hp webproxy 2.1 |
||
ibm http server 1.3.26 |
||
ibm http server 1.3.26.1 |
||
ibm http server 1.3.26.2 |
||
ibm http server 1.3.28 |
||
sgi propack 2.4 |
||
hp vvos 11.04 |
||
openbsd openbsd |
||
openbsd openbsd 3.4 |
||
openbsd openbsd 3.5 |