ID:5839 - Exploit for Input validation error in Apache HTTP Server - CVE-2019-10098

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:5839 - Exploit for Input validation error in Apache HTTP Server - CVE-2019-10098

ID:5839 - Exploit for Input validation error in Apache HTTP Server - CVE-2019-10098

Published: June 17, 2021


Vulnerability identifier: #VU20374
Vulnerability risk: Medium
CVE-ID: CVE-2019-10098
CWE-ID: CWE-20
Exploitation vector: Remote access
Vulnerable software:
Apache HTTP Server

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to bypass certain security restrictions.

The vulnerability exists due to incorrect handling of encoded line break characters  within rewrite rules. A remote attacker can send a specially crafted HTTP request and potentially bypass security restrictions.


Remediation

Install updates from vendor's website.