PT-2002-1857 · Apache · Apache+1

Published

2002-10-03

Updated

2021-06-06

CVE-2002-0843

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Apache versions prior to 1.3.27 Apache 2.x versions prior to 2.0.43

Description: The issue is related to buffer overflows in the ApacheBench benchmark support program, which can be exploited by a malicious web server. This could lead to a denial of service and potentially allow the execution of arbitrary code if the ApacheBench tool is run against a malicious server.

Recommendations: For Apache versions prior to 1.3.27, update to version 1.3.27 or later. For Apache 2.x versions prior to 2.0.43, update to version 2.0.43 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0843

DSA-187

DSA-188

DSA-195

Affected Products

Apache

Apache Http Server

PT-2002-1857 · Apache · Apache+1

CVE-2002-0843

Related Identifiers

Affected Products

References · 31