SA-2023-013 - Apache HTTP Server mod_proxy respons... - Extreme Networks

Summary

A malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the client.

Impact Details

OS/Product	Exposure
Network OS	No

Please see the full security advisory article here for more details.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

SA-2023-047 - Framing Frames: Bypassing Wi-Fi Encryption by Manipulating Transmit Queues (Leaking fr

SA-2023-107 - libcurl cookie injection with none file (CVE-2023-38546)

SA-2023-106 - SOCKS5 heap buffer overflow (CVE-2023-38545)

GTM-P2G8KFN

Extreme Networks

SA-2023-013 - Apache HTTP Server mod_proxy response splitting (CVE-2022-37436)

SA-2023-047 - Framing Frames: Bypassing Wi-Fi Encryption by Manipulating Transmit Queues (Leaking fr

SA-2023-107 - libcurl cookie injection with none file (CVE-2023-38546)

SA-2023-106 - SOCKS5 heap buffer overflow (CVE-2023-38545)