CVE-2009-1191
Priority
Low
Description
mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server
2.2.11 allows remote attackers to obtain sensitive response data, intended
for a client that sent an earlier POST request with no request body, via an
HTTP request.
2.2.11 allows remote attackers to obtain sensitive response data, intended
for a client that sent an earlier POST request with no request body, via an
HTTP request.
References
Notes
jdstrand> affected code only in 2.2.11 (Ubuntu 9.04)
Assigned-to
jdstrand
Package
| Upstream: | released (2.2.11-4) |
| Ubuntu 8.04 LTS (Hardy Heron): | not-affected |