Vulnerabilities > CVE-2006-20001 - Out-of-bounds Write vulnerability in Apache Http Server

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
apache
CWE-787
NVD
Published: 2023-01-17
Updated: 2023-09-08

Summary

A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier.

Vulnerable Configurations

Part Description Count
Application
Apache
257

Common Weakness Enumeration (CWE)

References