Apache 1.3 through 1.3.24, and Apache 2.0 through 2.0.36, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a chunk-encoded HTTP request that causes Apache to use an incorrect size.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Http_server | Apache | 1.2.2 (including) | 1.3.24 (including) |
Http_server | Apache | 2.0.0 (including) | 2.0.36 (including) |