CVE Vulnerabilities

CVE-2007-6422

Published: Jan 08, 2008 | Modified: Jun 06, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

The balancer_handler function in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service (child process crash) via an invalid bb variable.

Affected Software

Name Vendor Start Version End Version
Http_server Apache 2.2.3 2.2.3
Http_server Apache 2.2.4 2.2.4
Http_server Apache 2.2.1 2.2.1
Http_server Apache 2.2.2 2.2.2
Http_server Apache 2.2 2.2
Http_server Apache - -
Http_server Apache 2.2.6 2.2.6
Red Hat Application Stack v2 for Enterprise Linux RedHat httpd *
Red Hat Enterprise Linux 5 RedHat httpd-0:2.2.3-11.el5_1.3 *
Apache2 Ubuntu dapper *
Apache2 Ubuntu edgy *
Apache2 Ubuntu feisty *
Apache2 Ubuntu gutsy *

References