Denial of service attack for Apache on Windows


While testing for Oracle vulnerabilities, Mark Litchfield discovered a
denial of service attack for Apache on Windows. Investigation by the Apache Software Foundation showed that this issue has a Wider scope, which on some platforms results in a denial of service vulnerability, while on some other platforms presents a potential a remote exploit vulnerability.

We were also notified today by ISS that they had published the same issue which has forced the early release of this advisory.

The Common Vulnerabilities and Exposures project ( has assigned the name CAN-2002-0392 to this issue.

Leave a Reply