Description

Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility library (aka APR-util) before 1.3.10, as used in the mod_reqtimeout module in the Apache HTTP Server and other software, allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors related to the destruction of an APR bucket.

Remediation

References

CVE-2010-1623

Related Vulnerabilities

WordPress Plugin Internal Links Manager Multiple Cross-Site Scripting Vulnerabilities (2.1.0)

WordPress 5.9.x Multiple Vulnerabilities (5.9 - 5.9.8)

WordPress Plugin Magic Fields Arbitrary File Upload (1.6.3.2)

Apache version older than 1.3.27

WordPress Plugin TheCartPress eCommerce Shopping Cart Multiple Vulnerabilities (1.5.3.6)

Severity

Medium

Classification

CVE-2010-1623 CWE-119

Tags

Missing Update Known Vulnerabilities