Back to search
CVE-2007-1862
Published: Jun 4, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
The recall_headers function in mod_mem_cache in Apache 2.2.4 does not properly copy all levels of header data, which can cause Apache to return HTTP headers containing previously used data, which could be used by remote attackers to obtain potentially sensitive information.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
24553
vdb-entry
x_refsource_BID
http://issues.apache.org/bugzilla/show_bug.cgi?id=41551
x_refsource_CONFIRM
http://people.apache.org/~covener/2.2.x-mod_memcache-poolmgmt.diff
x_refsource_CONFIRM
27563
third-party-advisory
x_refsource_SECUNIA
38641
vdb-entry
x_refsource_OSVDB
FEDORA-2007-2214
vendor-advisory
x_refsource_FEDORA
http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html
x_refsource_CONFIRM
http://httpd.apache.org/security/vulnerabilities_22.html
x_refsource_CONFIRM
GLSA-200711-06
vendor-advisory
x_refsource_GENTOO
MDKSA-2007:127
vendor-advisory
x_refsource_MANDRIVA
26842
third-party-advisory
x_refsource_SECUNIA
ADV-2007-2231
vdb-entry
x_refsource_VUPEN
ADV-2007-2727
vdb-entry
x_refsource_VUPEN
MDVSA-2013:150
vendor-advisory
x_refsource_MANDRIVA
26273
third-party-advisory
x_refsource_SECUNIA
http://bugs.gentoo.org/show_bug.cgi?id=186219
x_refsource_CONFIRM
[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1888194 [4/13] - /httpd/site/trunk/content/security/json/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1073139 [4/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now