CVE-1999-0107

Apache HTTP Server - Buffer Overflow

Title source: rule
STIX 2.1

Description

Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service with a large number of GET requests containing a large number of / characters.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Michal Zalewski · textdosmultiple
https://www.exploit-db.com/exploits/20558

References (1)

Core 1
Core References
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0107

Scores

EPSS 0.3565
EPSS Percentile 97.1%

Details

Status published
Products (9)
apache/http_server 0.8.11
apache/http_server 0.8.14
apache/http_server 1.0
apache/http_server 1.0.2
apache/http_server 1.0.3
apache/http_server 1.0.5
apache/http_server 1.1
apache/http_server 1.1.1
apache/http_server 1.2.5
Published Dec 30, 1997
Tracked Since Feb 18, 2026