Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2970

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-2970
Last Modified 07 Mar 2011 09:25:22
Published 25 Oct 2005 01:06:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2970

Summary

Memory leak in the worker MPM (worker.c) for Apache 2, in certain circumstances, allows remote attackers to cause a denial of service (memory consumption) via aborted connections, which prevents the memory for the transaction pool from being reused for other connections.

Vulnerable Systems

Application

  • Apache Http Server 2.0


References

CONFIRM - http://mail-archives.apache.org/mod_mbox/httpd-cvs/200509.mbox/%3C20051001110218.40692.qmail@minotaur.apache.org%3E

CONFIRM - http://svn.apache.org/viewcvs?rev=292949&view=rev

UBUNTU - USN-225-1

BID - 15762

FEDORA - FLSA-2006:175406

FEDORA - FEDORA-2006-052

SUSE - SUSE-SR:2005:028

MANDRIVA - MDKSA-2005:233

SECTRACK - 1015093

SECUNIA - 18585

SECUNIA - 18333

SECUNIA - 18161

SECUNIA - 17923

SECUNIA - 16559

REDHAT - RHSA-2006:0159


Last Updated: 27 May 2016 10:40:42