A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier. CREATE(Triage):(User=admin) CVE-2006-20001 (https://nvd.nist.gov/vuln/detail/CVE-2006-20001)
