Back to search
CVE-2007-1863
Published: Jun 27, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
cache_util.c in the mod_cache module in Apache HTTP Server (httpd), when caching is enabled and a threaded Multi-Processing Module (MPM) is used, allows remote attackers to cause a denial of service (child processing handler crash) via a request with the (1) s-maxage, (2) max-age, (3) min-fresh, or (4) max-stale Cache-Control headers without a value.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
28606
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0533
vendor-advisory
x_refsource_REDHAT
26822
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0557
vendor-advisory
x_refsource_REDHAT
PK52702
vendor-advisory
x_refsource_AIXAPAR
MDKSA-2007:140
vendor-advisory
x_refsource_MANDRIVA
25920
third-party-advisory
x_refsource_SECUNIA
26993
third-party-advisory
x_refsource_SECUNIA
27563
third-party-advisory
x_refsource_SECUNIA
27732
third-party-advisory
x_refsource_SECUNIA
PK49355
vendor-advisory
x_refsource_AIXAPAR
RHSA-2007:0556
vendor-advisory
x_refsource_REDHAT
http://httpd.apache.org/security/vulnerabilities_20.html
x_refsource_CONFIRM
TA08-150A
third-party-advisory
x_refsource_CERT
SUSE-SA:2007:061
vendor-advisory
x_refsource_SUSE
FEDORA-2007-2214
vendor-advisory
x_refsource_FEDORA
2007-0026
vendor-advisory
x_refsource_TRUSTIX
http://httpd.apache.org/security/vulnerabilities_22.html
x_refsource_CONFIRM
30430
third-party-advisory
x_refsource_SECUNIA
24649
vdb-entry
x_refsource_BID
APPLE-SA-2008-05-28
vendor-advisory
x_refsource_APPLE
ADV-2007-3386
vdb-entry
x_refsource_VUPEN
37079
vdb-entry
x_refsource_OSVDB
20090821 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server
mailing-list
x_refsource_BUGTRAQ
MDKSA-2007:141
vendor-advisory
x_refsource_MANDRIVA
ADV-2008-0233
vdb-entry
x_refsource_VUPEN
1018303
vdb-entry
x_refsource_SECTRACK
27037
third-party-advisory
x_refsource_SECUNIA
26443
third-party-advisory
x_refsource_SECUNIA
[security-announce] 20090820 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server
mailing-list
x_refsource_MLIST
GLSA-200711-06
vendor-advisory
x_refsource_GENTOO
https://issues.rpath.com/browse/RPL-1500
x_refsource_CONFIRM
oval:org.mitre.oval:def:9824
vdb-entry
signature
x_refsource_OVAL
SSRT071447
vendor-advisory
x_refsource_HP
HPSBUX02262
vendor-advisory
x_refsource_HP
25830
third-party-advisory
x_refsource_SECUNIA
ADV-2008-1697
vdb-entry
x_refsource_VUPEN
USN-499-1
vendor-advisory
x_refsource_UBUNTU
26508
third-party-advisory
x_refsource_SECUNIA
http://support.avaya.com/elmodocs2/security/ASA-2007-353.htm
x_refsource_CONFIRM
26842
third-party-advisory
x_refsource_SECUNIA
ADV-2007-3283
vdb-entry
x_refsource_VUPEN
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=244658
x_refsource_MISC
ADV-2007-2727
vdb-entry
x_refsource_VUPEN
http://svn.apache.org/viewvc?view=rev&revision=535617
x_refsource_CONFIRM
RHSA-2007:0534
vendor-advisory
x_refsource_REDHAT
26273
third-party-advisory
x_refsource_SECUNIA
25873
third-party-advisory
x_refsource_SECUNIA
http://bugs.gentoo.org/show_bug.cgi?id=186219
x_refsource_CONFIRM
[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1888194 [4/13] - /httpd/site/trunk/content/security/json/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1073139 [4/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now