Computer Security
[EN] securityvulns.ru no-pyccku


Apache mod_security protection bypass
Published:10.05.2014
Source:
SecurityVulns ID:13761
Type:remote
Threat Level:
5/10
Description:Protection bypass via chunked encoding.
Affected:APACHE : mod_security 2.7
CVE:CVE-2013-5705 (apache2/modsecurity.c in ModSecurity before 2.7.6 allows remote attackers to bypass rules by using chunked transfer coding with a capitalized Chunked value in the Transfer-Encoding HTTP header.)
Original documentdocumentMANDRIVA, [ MDVSA-2014:081 ] apache-mod_security (10.05.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod