Apache 1.3 mod_proxy HTTP Chunked Encoding Integer Overflow Vulnerability

Apache is prone to a remote integer-overflow vulnerability.

An attacker can exploit this issue to execute arbitrary code. Successful exploits will compromise affected computers. Failed exploit attempts will result in a denial-of-service condition.

Note that this issue affects platforms on which 'sizeof(int)' is less than 'sizeof(long)'. In particular, this occurs on some 64-bit architectures.

Versions prior to Apache 1.3.42 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus