Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2004-0493
HistoryAug 06, 2004 - 4:00 a.m.

CVE-2004-0493

2004-08-0604:00:00
[email protected]
web.nvd.nist.gov
52
apache
httpd
denial of service
buffer overflow
vulnerability
cve-2004-0493
nvd

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

6.8 Medium

AI Score

Confidence

High

0.962 High

EPSS

Percentile

99.5%

JSON

The ap_get_mime_headers_core function in Apache httpd 2.0.49 allows remote attackers to cause a denial of service (memory exhaustion), and possibly an integer signedness error leading to a heap-based buffer overflow on 64 bit systems, via long header lines with large numbers of space or tab characters.

Affected configurations

NVD
Node
avayaconverged_communications_serverMatch2.0
OR
gentoolinuxMatch1.4
OR
trustixsecure_linuxMatch1.5
OR
trustixsecure_linuxMatch2.0
OR
trustixsecure_linuxMatch2.1
Node
apachehttp_serverMatch2.0.47
OR
apachehttp_serverMatch2.0.48
OR
apachehttp_serverMatch2.0.49
OR
ibmhttp_serverMatch2.0.42
OR
ibmhttp_serverMatch2.0.42.1
OR
ibmhttp_serverMatch2.0.42.2
OR
ibmhttp_serverMatch2.0.47
OR
ibmhttp_serverMatch2.0.47.1
OR
avayas8300Matchr2.0.0
OR
avayas8500Matchr2.0.0
OR
avayas8700Matchr2.0.0

References

Related

nessus 8
openvas 6
debiancve 1
nvd 1
httpd 1
gentoo 1
ubuntucve 1
securityvulns 2
checkpoint_advisories 1
cvelist 1
redhat 2
suse 1
nessus
nessus
Mandrake Linux Security Advisory : apache2 (MDKSA-2004:064)
2004-07-31 00:00:00
GLSA-200407-03 : Apache 2: Remote denial of service attack
2004-08-30 00:00:00
Fedora Core 2 : httpd-2.0.50-2.1 (2004-204)
2004-07-23 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200407-03 (Apache)
2008-09-24 00:00:00
Apache HTTP Server Input Header Folding and mod_ssl ssl_io_filter_cleanup DoS Vulnerabilities
2005-11-03 00:00:00
Apache Input Header Folding and mod_ssl ssl_io_filter_cleanup DoS Vulnerabilities
2005-11-03 00:00:00
debiancve
debiancve
CVE-2004-0493
2004-08-06 04:00:00
nvd
nvd
CVE-2004-0493
2004-08-06 04:00:00
httpd
httpd
Apache Httpd < 2.0.50 : Header parsing memory leak
2004-06-13 00:00:00
gentoo
gentoo
Apache 2: Remote denial of service attack
2004-07-04 00:00:00
ubuntucve
ubuntucve
CVE-2004-0493
2004-08-06 00:00:00
securityvulns
securityvulns
TSSA-2004-012 - apache
2004-06-30 00:00:00
[Full-Disclosure] Advisory 11/2004: PHP memory_limit remote vulnerability
2004-07-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache 2.0.x Input Header Folding Denial of Service (CVE-2004-0493)
2009-12-13 00:00:00
cvelist
cvelist
CVE-2004-0493
2004-06-30 04:00:00
redhat
redhat
(RHSA-2004:342) httpd security update
2004-07-06 00:00:00
(RHSA-2004:392) php security update
2004-07-19 00:00:00
suse
suse
remote code execution in php4/mod_php4
2004-07-16 12:43:18

6.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

6.8 Medium

AI Score

Confidence

High

0.962 High

EPSS

Percentile

99.5%

JSON
Related for CVE-2004-0493
nessus8openvas6debiancve1nvd1httpd1gentoo1ubuntucve1securityvulns2checkpoint_advisories1cvelist1redhat2suse1