- Description
- The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server 2.2.17 through 2.2.21, when a threaded MPM is used, does not properly handle a %{}C format string, which allows remote attackers to cause a denial of service (daemon crash) via a cookie that lacks both a name and a value.
- Source
- secalert@redhat.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 2.6
- Impact score
- 2.9
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:N/I:N/A:P
- nvd@nist.gov
- CWE-20
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:http_server:2.2.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A71F4154-AD20-4EEA-9E2E-D3385C357DA5"
},
{
"criteria": "cpe:2.3:a:apache:http_server:2.2.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B0B8C9DB-401E-42B3-BAED-D09A96DE9A90"
},
{
"criteria": "cpe:2.3:a:apache:http_server:2.2.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "062C20A0-05A0-4164-8330-DF6ADFE607F4"
},
{
"criteria": "cpe:2.3:a:apache:http_server:2.2.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D345BA35-93BB-406F-B5DC-86E49FB29C22"
},
{
"criteria": "cpe:2.3:a:apache:http_server:2.2.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7ED4892F-C829-4BEA-AB82-6A78F6F2426D"
}
],
"operator": "OR"
}
]
}
]