CVE-2009-1191

Published: 23 April 2009

mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 allows remote attackers to obtain sensitive response data, intended for a client that sent an earlier POST request with no request body, via an HTTP request.

Priority

Low

Status

Package Release Status
apache2
Launchpad, Ubuntu, Debian
Upstream
Released (2.2.11-4)