Apache Httpd < None: mod_proxy_fcgi out-of-bounds memory read

2014-09-17T00:00:00
ID HTTPD:BC9D721F4559FBD6CD9FC08B4A702A04
Type httpd
Reporter Teguh P. Alko.
Modified 2014-11-12T00:00:00

Description

An out-of-bounds memory read was found in mod_proxy_fcgi. A malicious FastCGI server could send a carefully crafted response which could lead to a crash when reading past the end of a heap memory or stack buffer. This issue affects version 2.4.10 only.