Back to search
CVE-2014-3583
Published: Dec 15, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The handle_headers function in mod_proxy_fcgi.c in the mod_proxy_fcgi module in the Apache HTTP Server 2.4.10 allows remote FastCGI servers to cause a denial of service (buffer over-read and daemon crash) via long response headers.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://httpd.apache.org/security/vulnerabilities_24.html
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=1163555
x_refsource_CONFIRM
USN-2523-1
vendor-advisory
x_refsource_UBUNTU
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
x_refsource_CONFIRM
http://svn.apache.org/viewvc?view=revision&revision=1638818
x_refsource_CONFIRM
APPLE-SA-2015-08-13-2
vendor-advisory
x_refsource_APPLE
RHSA-2015:1855
vendor-advisory
x_refsource_REDHAT
71657
vdb-entry
x_refsource_BID
https://support.apple.com/kb/HT205031
x_refsource_CONFIRM
APPLE-SA-2015-09-16-4
vendor-advisory
x_refsource_APPLE
RHSA-2015:1858
vendor-advisory
x_refsource_REDHAT
https://support.apple.com/HT205219
x_refsource_CONFIRM
GLSA-201701-36
vendor-advisory
x_refsource_GENTOO
[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1073139 [9/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1888194 [9/13] - /httpd/site/trunk/content/security/json/
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now