CVE-2002-0392
EPSS 53.9%
Description
Apache 1.3 through 1.3.24, and Apache 2.0 through 2.0.36, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a chunk-encoded HTTP request that causes Apache to use an incorrect size.
How to fix CVE-2002-0392
To remediate CVE-2002-0392, upgrade the affected package to a fixed version below.
- Debian/apache2—upgrade to 2.0.37 or later
Is CVE-2002-0392 being exploited?
Likely — EPSS is 53.9%, placing CVE-2002-0392 in the top tier of vulnerabilities by exploitation probability. Prioritise patching.
Affected packages (1)
- from 0, < 2.0.37