Apache Buffer Overflow Flaw Patched
The Apache Software Foundation has rolled out a patch for versions of its popular Apache HTTP Server to fix a potentially serious security flaw.
Source: InternetNewsThe buffer overflow flaw affects Apache httpd versions 1.3.26, 1.3.27, 1.3.28, 1.3.29 and 1.3.31, which were configured to act as proxy servers. Apache httpd 2.0 and other versions of Apache httpd 1.3 are unaffected. An Apache Week advisory said the buffer overflow can be triggered by getting the mod_proxy feature to connect to a remote server and return an invalid content-length.
0