Published: 18/02/2006 Updated: 29/11/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Unspecified vulnerability in (1) apreq_parse_headers and (2) apreq_parse_urlencoded functions in Apache2::Request (Libapreq2) prior to 2.07 allows remote malicious users to cause a denial of service (CPU consumption) via unknown attack vectors that result in quadratic computational complexity.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apache libapreq2
debian debian linux 3.0
debian debian linux 3.1

Gunnar Wolf noticed that the correction for the following problem was not complete and requires an update For completeness we're providing the original problem description: An algorithm weakness has been discovered in Apache2::Request, the generic request library for Apache2 which can be exploited remotely and cause a denial of service via CPU co ...

NVD-CWE-noinfo http://secunia.com/advisories/18846 http://svn.apache.org/viewcvs.cgi/httpd/apreq/tags/v2_07/CHANGES?rev=376998&view=markup http://www.securityfocus.com/bid/16710 http://www.debian.org/security/2006/dsa-1000 http://secunia.com/advisories/19139 http://www.gentoo.org/security/en/glsa/glsa-200604-08.xml http://secunia.com/advisories/19658 http://securityreason.com/securityalert/737 http://www.vupen.com/english/advisories/2006/0645 https://exchange.xforce.ibmcloud.com/vulnerabilities/24917 https://nvd.nist.gov https://www.debian.org/security/./dsa-1000

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-0042

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect