Red Hat Bugzilla – Bug 167103
CAN-2005-2728 byterange memory DoS
Last modified: 2007-11-30 17:07:08 EST
+++ This bug was initially created as a clone of Bug #167102 +++
A flaw was found in Apache 2.0 where the byterange filter would buffer responses
into memory. This could cause a Denial of Service through memory leak if a
remote attacker sends carefully crafted requests to a web server that has a CGI
script which usually would give a large response.
Note that this also affects any dynamic response generator such as PHP.
Will be async, marking as dupe of RHEL4 bug
*** This bug has been marked as a duplicate of 167102 ***