Subject: CERT Advisory CA-2002-17 Apache Web Server Chunk Handling
Date: Mon, 17 Jun 2002 22:05:33 -0400 (EDT)
From: CERT Advisory <firstname.lastname@example.org>
-----BEGIN PGP SIGNED MESSAGE-----
CERT Advisory CA-2002-17 Apache Web Server Chunk Handling Vulnerability
Original release date: June 17, 2002
Last revised: --
A complete revision history can be found at the end of this file.
* Web servers based on Apache code versions 1.3 through 1.3.24
* Web servers based on Apache code versions 2.0 through 2.0.36
There is a remotely exploitable vulnerability in the handling of large
chunks of data in web servers that are based on Apache source code.
This vulnerability is present by default in configurations of Apache
web servers versions 1.3 through 1.3.24 and versions 2.0 through
2.0.36. The impact of this vulnerability is dependent upon the
software version and the hardware platform the server is running on.