A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.
History

Wed, 07 Aug 2024 21:30:00 +0000

Type Values Removed Values Added
References
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published: 2023-01-17T19:07:27.136Z

Updated: 2024-08-07T20:57:41.059Z

Reserved: 2022-09-01T14:24:05.065Z

Link: CVE-2006-20001

cve-icon Vulnrichment

Updated: 2024-08-07T20:57:41.059Z

cve-icon NVD

Status : Modified

Published: 2023-01-17T20:15:11.177

Modified: 2023-09-08T22:15:08.013

Link: CVE-2006-20001

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-01-17T00:00:00Z

Links: CVE-2006-20001 - Bugzilla