CVE-2004-0942

Name of the Vulnerable Software and Affected Versions: Apache webserver versions 2.0.52 and earlier

Description: The issue allows remote attackers to cause a denial of service by consuming CPU or memory resources. This can be achieved through an HTTP GET request with a MIME header containing multiple lines with a large number of space characters, or by sending large amounts of data to the server, which can cause Apache children to consume proportional amounts of memory.

Recommendations: For Apache webserver versions 2.0.52 and earlier, consider restricting the size of HTTP requests and enforcing field length limits to prevent large amounts of data from being sent to the server. As a temporary workaround, consider configuring the server to limit the amount of memory available to each Apache child process to minimize the risk of denial of service.