Описание
The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server before 2.4.8 allows remote attackers to cause a denial of service (segmentation fault and daemon crash) via a crafted cookie that is not properly handled during truncation.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2.4.7-1ubuntu3 |
| lucid | not-affected | code not present |
| precise | released | 2.2.22-1ubuntu1.5 |
| quantal | released | 2.2.22-6ubuntu2.4 |
| saucy | released | 2.4.6-2ubuntu2.2 |
| upstream | released | 2.4.8 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server before 2.4.8 allows remote attackers to cause a denial of service (segmentation fault and daemon crash) via a crafted cookie that is not properly handled during truncation.
The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server before 2.4.8 allows remote attackers to cause a denial of service (segmentation fault and daemon crash) via a crafted cookie that is not properly handled during truncation.
The log_cookie function in mod_log_config.c in the mod_log_config modu ...
The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server before 2.4.8 allows remote attackers to cause a denial of service (segmentation fault and daemon crash) via a crafted cookie that is not properly handled during truncation.
EPSS
5 Medium
CVSS2