Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2013-5705
Description:apache2/modsecurity.c in ModSecurity before 2.7.6 allows remote attackers to bypass rules by using chunked transfer coding with a capitalized Chunked value in the Transfer-Encoding HTTP header.
Test IDs: 1.3.6.1.4.1.25623.1.0.867691   1.3.6.1.4.1.25623.1.0.867687   1.3.6.1.4.1.25623.1.0.702991   1.3.6.1.4.1.25623.1.0.120049   1.3.6.1.4.1.25623.1.0.120050   1.3.6.1.4.1.25623.1.1.4.2014.0972.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-5705
Debian Security Information: DSA-2991 (Google Search)
http://www.debian.org/security/2014/dsa-2991
http://martin.swende.se/blog/HTTPChunked.html




© 1998-2021 E-Soft Inc. All rights reserved.