Apache mod_proxy Heap-based Buffer Overflow Vulnerability

Apache mod_proxy Heap-based Buffer Overflow Vulnerability

CVE-2004-0492 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied.

Learn more about our Cis Benchmark Audit For Apache Http Server.