Description

The recall_headers function in mod_mem_cache in Apache 2.2.4 does not properly copy all levels of header data, which can cause Apache to return HTTP headers containing previously used data, which could be used by remote attackers to obtain potentially sensitive information.

Remediation

References

CVE-2007-1862

Related Vulnerabilities

WordPress Plugin Booking.com Product Helper Cross-Site Scripting (1.0.1)

WordPress Plugin Tabs Cross-Site Scripting (1.8.0)

Django Use of Hard-coded Credentials Vulnerability (CVE-2016-9013)

SharePoint CVE-2023-33159 Vulnerability (CVE-2023-33159)

Perl Integer Overflow or Wraparound Vulnerability (CVE-2020-10878)

Severity

Medium

Classification

CVE-2007-1862

Tags

Missing Update Known Vulnerabilities