Description

This alert was generated using only banner information. It may be a false positive.

Apache does not properly calculate buffer size when processing request encoded as 'Chunked'. It's possible to exploit this flaw resulting execution of arbitrary code.

Affected Apache versions (up to 2.0.38 for Apache 2.x and up to 1.3.25 for Apache 1.x).

Remediation

Upgrade Apache to the latest version.

References

BID 5033

Apache homepage

Related Vulnerabilities

ownCloud Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2021-35947)

PHP-Fusion Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-1806)

WordPress Plugin CYSTEME Finder, the admin files explorer Unspecified Vulnerability (1.7)

WordPress Plugin Top 10-Popular posts for WordPress Cross-Site Scripting (3.2.2)

WordPress Plugin Simple Giveaways-Grow your business, email lists and traffic with contests Security Bypass (2.17.3)

Severity

High

Classification

CVE-2002-0392 CWE-119 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Tags

Code Execution Missing Update