← voltar
CVE-2008-2364

CVE-2008-2364

EPSS 12.7%
The ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server 2.0.63 and 2.2.8 does not limit the number of forwarded interim responses, which allows remote HTTP servers to cause a denial of service (memory consumption) via a large number of interim responses.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01539432http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-03/msg00001.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-03/msg00004.htmlhttp://marc.info/?l=bugtraq&m=123376588623823&w=2http://marc.info/?l=bugtraq&m=125631037611762&w=2http://rhn.redhat.com/errata/RHSA-2008-0967.htmlhttp://secunia.com/advisories/30621http://secunia.com/advisories/31026http://secunia.com/advisories/31404http://secunia.com/advisories/31416http://secunia.com/advisories/31651