Loading
modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which allows remote attackers to execute arbitrary code via unspecified vectors related to a crafted request, a reset packet, and "orphaned callback pointers."
Use Ibm vendor hub and Websphere Application Server product page to widen CVE-2010-0425 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-14914, CVE-2025-14917 and CVE-2025-14915 for nearby disclosures in the same product family.