VDB
CERTCC-2002-944335
CERTCC-2002-944335
PUBLISHED
There is a remotely exploitable vulnerability in the way that Apache web servers (or other web servers based on their source code) handle data encoded in chunks. This vulnerability is present by default in configurations of Apache web server versions 1.2.2 and above, 1.3 through 1.3.24, and versions 2.0 through 2.0.36. The impact of this vulnerability is dependent upon the software version and the hardware platform the server is running on.
Timeline
- Jun 17, 2002 CVE Published
- Nov 2, 2007 CVE Updated
- Mar 17, 2026 Security Advisory
References
- Apache web servers fail to handle chunks with a negative size url
- Apache web servers fail to handle chunks with a negative size url
- Apache web servers fail to handle chunks with a negative size url
- Apache web servers fail to handle chunks with a negative size url
- Apache web servers fail to handle chunks with a negative size url
- Apache web servers fail to handle chunks with a negative size url
- Apache web servers fail to handle chunks with a negative size url
- Apache web servers fail to handle chunks with a negative size url
- Apache web servers fail to handle chunks with a negative size advisory
- Apache web servers fail to handle chunks with a negative size advisory