Intrusion Prevention

Apache.IPv6.Parsing.Flaw

Description

This indicates a potential Denial-of-Service vulnerability in the processing of Internet Protocol Version 6 (IPv6) addresses by Apache Web Servers.


Apache Web Server is an open source solution to building a secure modern web server that is compatible with both UNIX and Windows operating systems. Due to inadequate boundary checking, an attacker can send a carefully-constructed request to cause a vulnerable Apache Web Server crash.

Affected Products

Any version of unpatched Apache 2.0 prior to Apache 2.0.51 is vulnerable.

Impact

Attacks may be able to cause the Apache web server to crash.

Recommended Actions

Apply appropriate patches and/or upgrade Apache to the latest non-vulnerable version.

CVE References

CVE-2004-0786

Other References

1