CVE-2004-0493

MEDIUM severity · CVSS 6.4

6.4CVSS MEDIUM

Summary

The ap_get_mime_headers_core function in Apache httpd 2.0.49 allows remote attackers to cause a denial of service (memory exhaustion), and possibly an integer signedness error leading to a heap-based buffer overflow on 64 bit systems, via long header lines with large numbers of space or tab characters.

Impact & exploitability

Attack vectorNetwork

Attack complexityLow

Privileges required—

User interaction—

Confidentiality impactNone

Integrity impact—

Availability impact—

Exploit probability (EPSS)90%

AV:N/AC:L/Au:N/C:N/I:P/A:P

Affected products we track (1)

Apache HTTP Server

Recommendation

Apply the vendor fix in your normal patch cycle. Open any affected product above for its exact safe version.

Additional information

NVD record
http://lists.grok.org.uk/pipermail/full-disclosure/2004-June/023133.html
http://marc.info/?l=bugtraq&m=108853066800184&w=2
http://marc.info/?l=bugtraq&m=109181600614477&w=2
http://security.gentoo.org/glsa/glsa-200407-03.xml
http://www.apacheweek.com/features/security-20
http://www.guninski.com/httpd1.html
http://www.mandriva.com/security/advisories?name=MDKSA-2004:064
http://www.redhat.com/support/errata/RHSA-2004-342.html