Description

The mod_proxy module in the Apache HTTP Server 2.4.x before 2.4.10, when a reverse proxy is enabled, allows remote attackers to cause a denial of service (child-process crash) via a crafted HTTP Connection header.

Remediation

References

CVE-2014-0117

Related Vulnerabilities

WordPress Plugin Contact Form Builder-a plugin for creating contact and feedback forms Cross-Site Request Forgery (1.0.68)

MySQL CVE-2018-3285 Vulnerability (CVE-2018-3285)

WordPress Plugin Contact Bank-Contact Form Builder for WordPress Cross-Site Scripting (2.0.69)

PostgreSQL Insufficiently Protected Credentials Vulnerability (CVE-2021-23222)

MySQL Use of Externally-Controlled Format String Vulnerability (CVE-2008-3963)

Severity

Medium

Classification

CVE-2014-0117 CWE-20

Tags

Missing Update Known Vulnerabilities