Description

The mod_proxy module in the Apache HTTP Server 2.4.x before 2.4.10, when a reverse proxy is enabled, allows remote attackers to cause a denial of service (child-process crash) via a crafted HTTP Connection header.

Remediation

References

CVE-2014-0117

Related Vulnerabilities

WordPress 3.9.x Multiple Vulnerabilities (3.9 - 3.9.31)

PHP Numeric Errors Vulnerability (CVE-2013-4635)

Lighttpd Out-of-bounds Write Vulnerability (CVE-2022-22707)

ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2014-9046)

Java Unspesificed Vulnerability (CVE-2019-2821)

Severity

Medium

Classification

CVE-2014-0117 CWE-20

Tags

Missing Update Known Vulnerabilities