Oval Definition:	oval:org.mitre.oval:def:4863
Revision Date: 2004-12-09 Version: 16 Title: Apache Mod_Proxy Remote Negative Content-Length Buffer Overflow Description: Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2004-0492 Platform(s): Sun Solaris 8 Sun Solaris 9 Product(s): Apache Definition Synopsis Software section Solaris 8 or 9 installed Solaris 8 Installed OR Solaris 9 Installed AND NOT Patch 116973-01 or later installed AND NOT Patch 113146-05 or later installed AND Apache (SUNWapchu) installed AND Configuration section Apache running (httpd)
BACK