Описание
The mod_cgid module in the Apache HTTP Server before 2.4.10 does not have a timeout mechanism, which allows remote attackers to cause a denial of service (process hang) via a request to a CGI script that does not read from its stdin file descriptor.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2.4.10-1ubuntu1 |
| esm-infra-legacy/trusty | not-affected | 2.4.7-1ubuntu4.1 |
| lucid | released | 2.2.14-5ubuntu8.14 |
| precise | released | 2.2.22-1ubuntu1.7 |
| trusty | released | 2.4.7-1ubuntu4.1 |
| trusty/esm | not-affected | 2.4.7-1ubuntu4.1 |
| upstream | released | 2.4.10 |
Показывать по
5 Medium
CVSS2
Связанные уязвимости
The mod_cgid module in the Apache HTTP Server before 2.4.10 does not have a timeout mechanism, which allows remote attackers to cause a denial of service (process hang) via a request to a CGI script that does not read from its stdin file descriptor.
The mod_cgid module in the Apache HTTP Server before 2.4.10 does not have a timeout mechanism, which allows remote attackers to cause a denial of service (process hang) via a request to a CGI script that does not read from its stdin file descriptor.
The mod_cgid module in the Apache HTTP Server before 2.4.10 does not h ...
The mod_cgid module in the Apache HTTP Server before 2.4.10 does not have a timeout mechanism, which allows remote attackers to cause a denial of service (process hang) via a request to a CGI script that does not read from its stdin file descriptor.
Уязвимость программного обеспечения Apache HTTP Server, позволяющая удаленному злоумышленнику нарушить доступность защищаемой информации
5 Medium
CVSS2