Description
The date handling code in modules/proxy/proxy_util.c (mod_proxy) in Apache 2.3.0, when using a threaded MPM, allows remote origin servers to cause a denial of service (caching forward proxy process crash) via crafted date headers that trigger a buffer over-read.
Remediation
References
Related Vulnerabilities
WordPress Plugin YITH WooCommerce Gift Cards Premium Arbitrary File Upload (3.19.0)
PHP Improper Access Control Vulnerability (CVE-2015-8838)
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33334)
Drupal Core 8.7.x Denial of Service (8.7.0 - 8.7.10)
WordPress Plugin Frontend File Manager Multiple Vulnerabilities (18.2)