Description

Off-by-one error in the apr_brigade_vprintf function in Apache APR-util before 1.3.5 on big-endian platforms allows remote attackers to obtain sensitive information or cause a denial of service (application crash) via crafted input.

Remediation

References

CVE-2009-1956

Related Vulnerabilities

e107 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-16388)

WordPress Plugin TableOn-WordPress Posts Table Filterable Cross-Site Scripting (1.0.0)

WordPress Plugin WP Fastest Cache Multiple Vulnerabilities (0.8.5.7)

TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-1842)

WordPress Plugin Custom Simple Rss Cross-Site Request Forgery (2.0.6)

Severity

Medium

Classification

CVE-2009-1956

Tags

Missing Update Known Vulnerabilities