Description

The balancer_handler function in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service (child process crash) via an invalid bb variable.

Remediation

References

CVE-2007-6422

Related Vulnerabilities

Oracle Database Server CVE-2014-4310 Vulnerability (CVE-2014-4310)

Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.25)

WordPress Plugin User Domain Whitelist Multiple Vulnerabilities (1.4)

Squid Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2020-15811)

Oracle JRE CVE-2017-10348 Vulnerability (CVE-2017-10348)

Severity

Medium

Classification

CVE-2007-6422

Tags

Missing Update Known Vulnerabilities