Description

The balancer_handler function in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service (child process crash) via an invalid bb variable.

Remediation

References

CVE-2007-6422

Related Vulnerabilities

osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-24917)

Oracle Database Server CVE-2018-2680 Vulnerability (CVE-2018-2680)

WordPress Plugin Imsanity Unspecified Vulnerability (2.3.3)

WordPress Plugin Comment Extra Fields 'cef-upload.php' Arbitrary File Upload (1.7)

Jboss EAP Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-14721)

Severity

Medium

Classification

CVE-2007-6422

Tags

Missing Update Known Vulnerabilities