CVE-2013-5705 (debian_linux, modsecurity)

apache2/modsecurity.c in ModSecurity before 2.7.6 allows remote attackers to bypass rules by using chunked transfer coding with a capitalized Chunked value in the Transfer-Encoding HTTP header.

View Full Alert

Leave a Reply