Back to search
CVE-2012-4557
Published: Nov 30, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
The mod_proxy_ajp module in the Apache HTTP Server 2.2.12 through 2.2.21 places a worker node into an error state upon detection of a long request-processing time, which allows remote attackers to cause a denial of service (worker consumption) via an expensive request.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SSRT101139
vendor-advisory
x_refsource_HP
DSA-2579
vendor-advisory
x_refsource_DEBIAN
http://svn.apache.org/viewvc?view=revision&revision=1227298
x_refsource_CONFIRM
oval:org.mitre.oval:def:18938
vdb-entry
signature
x_refsource_OVAL
http://httpd.apache.org/security/vulnerabilities_22.html#2.2.22
x_refsource_CONFIRM
oval:org.mitre.oval:def:19284
vdb-entry
signature
x_refsource_OVAL
openSUSE-SU-2013:0248
vendor-advisory
x_refsource_SUSE
https://bugzilla.redhat.com/show_bug.cgi?id=871685
x_refsource_CONFIRM
HPSBUX02866
vendor-advisory
x_refsource_HP
openSUSE-SU-2013:0243
vendor-advisory
x_refsource_SUSE
[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1073139 [8/13] - in /websites/staging/httpd/trunk/content: ./ security/json/
mailing-list
x_refsource_MLIST
[httpd-cvs] 20210330 svn commit: r1888194 [8/13] - /httpd/site/trunk/content/security/json/
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now