CVE-2004-0942 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2004-0942
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0942

Description: Apache webserver 2.0.52 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an HTTP GET request with a MIME header containing multiple lines with a large number of space characters.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/17930 TRUSTIX http://www.trustix.org/errata/2004/0061/ SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-102198-1 SAID Secunia Advisory: SA19072 REDHAT http://www.redhat.com/support/errata/RHSA-2004-562.html MANDRAKE http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:135 HP http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX01123 http://marc.theaimsgroup.com/?l=bugtraq&m=110384374213596&w=2 FULLDISC http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/028248.html CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm APPLE http://lists.apple.com/archives/security-announce/2005//Aug/msg00000.html http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html

Return to the previous page.