Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2007-3847

The date handling code in modules/proxy/proxy_util.c (mod_proxy) in Apache 2.3.0, when using a threaded MPM, allows remote origin servers to cause a denial of service (caching forward proxy process crash) via crafted date headers that trigger a buffer over-read.

Related bugs and status

CVE-2007-3847 (Candidate) is related to these bugs:

Bug #163828: [apache2] Multiple vulnerabilities possibly resulting in a Denial of Service or the disclosure of sensitive information

Summary				In	Importance	Status
	163828	[apache2] Multiple vulnerabilities possibly resulting in a Denial of Service or the disclosure of sensitive information		apache2 (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securitytra...
MISC: http://www.securityfoc...
MISC: http://www.securityfoc...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://secunia.com/adv...
MISC: http://www.vupen.com/e...
MISC: http://www.vupen.com/e...
MISC: http://www.vupen.com/e...
MISC: http://www.vupen.com/e...
MISC: http://www.vupen.com/e...
MISC: http://www.vupen.com/e...
MISC: http://www.vupen.com/e...
MISC: http://www.vupen.com/e...
MISC: http://lists.apple.com...
MISC: http://lists.apple.com...
MISC: http://www.redhat.com/...
MISC: https://www.redhat.com...
MISC: http://security.gentoo...
MISC: http://www.mandriva.co...
MISC: http://www-1.ibm.com/s...
MISC: http://www-1.ibm.com/s...
MISC: http://www.redhat.com/...
MISC: http://www.redhat.com/...
MISC: http://www.redhat.com/...
MISC: http://www.redhat.com/...
MISC: http://slackware.com/s...
MISC: http://h20000.www2.hp....
MISC: http://www.novell.com/...
MISC: http://www.us-cert.gov...
MISC: http://www.ubuntu.com/...
MISC: http://marc.info/?l=ap...
MISC: http://marc.info/?l=ap...
MISC: http://marc.info/?l=ap...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: https://lists.apache.o...
MISC: http://lists.vmware.co...
MISC: http://bugs.gentoo.org...
MISC: http://docs.info.apple...
MISC: http://httpd.apache.or...
MISC: http://httpd.apache.or...
MISC: http://support.avaya.c...
MISC: http://www-1.ibm.com/s...
MISC: http://www.fujitsu.com...
MISC: http://www.oracle.com/...
MISC: https://issues.rpath.c...
MISC: https://oval.cisecurit...