CVE-2007-1349
CVE-2007-1349
PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
ftp://patches.sgi.com/support/free/security/advisories/20070602-01-P.aschttp://rhn.redhat.com/errata/RHSA-2007-0395.htmlhttp://rhn.redhat.com/errata/RHSA-2008-0630.htmlhttp://secunia.com/advisories/24678http://secunia.com/advisories/24839http://secunia.com/advisories/25072http://secunia.com/advisories/25110http://secunia.com/advisories/25432http://secunia.com/advisories/25655http://secunia.com/advisories/25730http://secunia.com/advisories/25894http://secunia.com/advisories/26084