KLA10067
DoS vulnerabilities in Apache httpd
Updated: 06/01/2019
Detect date
?
03/26/2014
Severity
?
Warning
Description

Multiple serious vulnerabilities have been found in Apache httpd. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities

  1. Vectors related to mod_log_config can be exploited remotely via a specially designed cookie;
  2. An improper string work vulnerability can be exploited remotely via a specially designed DAV WRITE request.
Affected products

Apache httpd 2.2 versions 2.2.25 and earlier

Solution

Update to latest version

Original advisories

Apache changelog

Impacts
?
DoS 
[?]
Related products
Apache HTTP Server
CVE-IDS
?
CVE-2013-64385.0Critical
CVE-2014-00985.0Critical