KLA10067
DoS vulnerabilities in Apache httpd
Обновлено: 17/06/2019
Дата обнаружения
26/03/2014
Уровень угрозы
Warning
Описание

Multiple serious vulnerabilities have been found in Apache httpd. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities

  1. Vectors related to mod_log_config can be exploited remotely via a specially designed cookie;
  2. An improper string work vulnerability can be exploited remotely via a specially designed DAV WRITE request.
Пораженные продукты

Apache httpd 2.2 versions 2.2.25 and earlier

Решение

Update to latest version

Первичный источник обнаружения
Apache changelog
Оказываемое влияние
?
DoS 
[?]
Связанные продукты
Apache HTTP Server
CVE-IDS
CVE-2013-64385.0Critical
CVE-2014-00985.0Critical