Description

Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied.

Remediation

References

Related Vulnerabilities

Severity

Critical

Classification

CVE-2004-0492

Tags

Missing Update Known Vulnerabilities