You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@httpd.apache.org by Marc Slemko <ma...@worldgate.com> on 1998/01/15 01:59:48 UTC

[BUG] improper handling of output CGI headers that are too long

We don't do proper error checking to be sure that the CGI output headers
weren't truncated at 8k, so we can die with an unexpected header when the
next read gets the rest of the incomplete line...

Not a serious bug, but...

Another sterling day for Microsoft security, with another gaping hole in
MSIE found.