Description

The ap_get_mime_headers_core function in Apache httpd 2.0.49 allows remote attackers to cause a denial of service (memory exhaustion), and possibly an integer signedness error leading to a heap-based buffer overflow on 64 bit systems, via long header lines with large numbers of space or tab characters.

Remediation

References

CVE-2004-0493

Related Vulnerabilities

Django Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-6188)

WordPress 4.6.x Cross-Domain Flash Injection Vulnerability (4.6 - 4.6.9)

WordPress Other Vulnerability (CVE-2007-4153)

Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2015-1399)

WordPress Plugin Booking Ultra Pro Appointments Booking Calendar Multiple Cross-Site Scripting Vulnerabilities (1.0.19)

Severity

Medium

Classification

CVE-2004-0493

Tags

Missing Update Known Vulnerabilities