Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2013-5704

The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass "RequestHeader unset" directives by placing a header in the trailer portion of data sent with chunked transfer coding. NOTE: the vendor states "this is not a security issue in httpd as such."

  • Published: Apr 15, 2014
  • Updated: Apr 13, 2023
  • CVE: CVE-2013-5704
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
apache / http_server 2.2.23 2.2.23.x
apache / http_server 2.4.1 2.4.1.x
apache / http_server 2.2.11 2.2.11.x
apache / http_server 2.2.0 2.2.0.x
apache / http_server 2.2.10 2.2.10.x
apache / http_server 2.4.6 2.4.6.x
apache / http_server 2.2.13 2.2.13.x
apache / http_server 2.2.2 2.2.2.x
apache / http_server 2.2.4 2.2.4.x
apache / http_server 2.2.17 2.2.17.x
apache / http_server 2.2.16 2.2.16.x
apache / http_server 2.2.21 2.2.21.x
apache / http_server 2.4.3 2.4.3.x
apache / http_server 2.2.8 2.2.8.x
apache / http_server 2.4.4 2.4.4.x
apache / http_server 2.4.10 2.4.10.x
apache / http_server 2.4.7 2.4.7.x
apache / http_server 2.2.14 2.2.14.x
apache / http_server 2.2.24 2.2.24.x
apache / http_server 2.2.25 2.2.25.x
apache / http_server 2.2.6 2.2.6.x
apache / http_server 2.2.22 2.2.22.x
apache / http_server 2.2.19 2.2.19.x
apache / http_server 2.2.27 2.2.27.x
apache / http_server 2.2.9 2.2.9.x
apache / http_server 2.2.18 2.2.18.x
apache / http_server 2.2.12 2.2.12.x
apache / http_server 2.2.3 2.2.3.x
apache / http_server 2.4.2 2.4.2.x
apache / http_server 2.2.15 2.2.15.x
apache / http_server 2.2.20 2.2.20.x
apache / http_server 2.4.9 2.4.9.x
apache / http_server 2.2.26 2.2.26.x
apache / http_server 2.2.5 2.2.5.x
redhat / enterprise_linux_desktop 7.0 7.0.x
redhat / enterprise_linux_workstation 7.0 7.0.x
redhat / enterprise_linux_server 7.0 7.0.x
redhat / enterprise_linux_desktop 6.0 6.0.x
redhat / enterprise_linux_server 6.0 6.0.x
redhat / enterprise_linux_workstation 6.0 6.0.x
redhat / enterprise_linux_server_tus 7.3 7.3.x
redhat / enterprise_linux_server_aus 7.3 7.3.x
redhat / enterprise_linux_server_aus 7.4 7.4.x
redhat / enterprise_linux_eus 7.3 7.3.x
redhat / enterprise_linux_eus 7.4 7.4.x
redhat / enterprise_linux_eus 7.5 7.5.x
redhat / enterprise_linux_server_tus 7.6 7.6.x
redhat / enterprise_linux_server_aus 7.6 7.6.x
redhat / enterprise_linux_eus 7.6 7.6.x
redhat / enterprise_linux_server_aus 7.7 7.7.x
redhat / enterprise_linux_server_tus 7.7 7.7.x
redhat / enterprise_linux_eus 7.7 7.7.x
redhat / jboss_enterprise_web_server 3.0.0 3.0.0.x
redhat / jboss_enterprise_web_server 2.0.0 2.0.0.x
oracle / enterprise_manager_ops_center 12.2.1 12.2.1.x
oracle / http_server 12.1.3.0 12.1.3.0.x
oracle / enterprise_manager_ops_center 12.3.0 12.3.0.x
oracle / enterprise_manager_ops_center 12.2.0 12.2.0.x
oracle / enterprise_manager_ops_center 12.1.4 12.1.4.x
oracle / http_server 12.1.2.0 12.1.2.0.x
oracle / solaris 11.2 11.2.x
oracle / http_server 11.1.1.7.0 11.1.1.7.0.x
oracle / linux 6 6.x
oracle / enterprise_manager_ops_center - 12.1.4
oracle / http_server 10.1.3.5.0 10.1.3.5.0.x
apple / mac_os_x - 10.10.4
apple / mac_os_x_server - 5.0.3
canonical / ubuntu_linux 14.10 14.10.x
canonical / ubuntu_linux 14.04 14.04.x
canonical / ubuntu_linux 10.04 10.04.x
canonical / ubuntu_linux 12.04 12.04.x