Apache HTTP Server Off-by-one Error Vulnerability - CVE-2005-1268 - Vulnerability Database

Apache HTTP Server Off-by-one Error Vulnerability - CVE-2005-1268

Medium

Reference: CVE-2005-1268

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2005-1268

Title: Apache HTTP Server Off-by-one Error Vulnerability

Overview:

Off-by-one error in the mod_ssl Certificate Revocation List (CRL) verification callback in Apache when configured to use a CRL allows remote attackers to cause a denial of service (child process crash) via a CRL that causes a buffer overflow of one null byte.