Vulnerabilities

CVE-2013-5704

by Fred · 15/04/2014

The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass "RequestHeader unset" directives by placing a header in the trailer portion of data sent with chunked transfer coding. NOTE: the vendor states "this is not a security issue in httpd as such."

Date published : 2014-04-15

http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html

http://lists.apple.com/archives/security-announce/2015/Sep/msg00004.html

Similar

Tags: Cybersecurity Alert