Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2007-6422
HistoryJan 08, 2008 - 12:00 a.m.

CVE-2007-6422

2008-01-0800:00:00
ubuntu.com
ubuntu.com
10

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.048 Low

EPSS

Percentile

92.8%

JSON

The balancer_handler function in mod_proxy_balancer in the Apache HTTP
Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is
used, allows remote authenticated users to cause a denial of service (child
process crash) via an invalid bb variable.

Notes

Author Note
jdstrand redhat has patch
OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchapache2<Β 2.0.55-4ubuntu2.3UNKNOWN
ubuntu6.10noarchapache2<Β 2.0.55-4ubuntu4.2UNKNOWN
ubuntu7.04noarchapache2<Β 2.2.3-3.2ubuntu2.1UNKNOWN
ubuntu7.10noarchapache2<Β 2.2.4-3ubuntu0.1UNKNOWN

Related

cvelist 1
prion 1
veracode 1
nvd 1
cve 1
debiancve 1
httpd 1
securityvulns 2
seebug 1
redhat 2
fedora 2
altlinux 3
openvas 16
nessus 16
slackware 1
gentoo 1
oraclelinux 1
centos 1
suse 1
ubuntu 1
cvelist
cvelist
CVE-2007-6422
2008-01-08 18:00:00
prion
prion
Code injection
2008-01-08 18:46:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:19:36
nvd
nvd
CVE-2007-6422
2008-01-08 18:46:00
cve
cve
CVE-2007-6422
2008-01-08 18:46:00
debiancve
debiancve
CVE-2007-6422
2008-01-08 18:46:00
httpd
httpd
Apache Httpd < 2.2.8 : mod_proxy_balancer DoS
2007-12-12 00:00:00
securityvulns
securityvulns
SecurityReason - Apache2 CSRF, XSS, Memory Corruption and Denial of Service Vulnerability
2008-01-12 00:00:00
Apache multiple security vulnerabilities
2008-01-24 00:00:00
seebug
seebug
Apache 'mod_proxy_balancer'存在倚δΈͺ漏洞
2008-01-14 00:00:00
redhat
redhat
(RHSA-2008:0009) Moderate: httpd security update
2008-01-21 00:00:00
(RHSA-2008:0008) Moderate: httpd security update
2008-01-15 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: httpd-2.2.8-1.fc8
2008-02-16 02:11:16
[SECURITY] Fedora 7 Update: httpd-2.2.8-1.fc7
2008-02-16 02:08:32
altlinux
altlinux
Security fix for the ALT Linux 9 package apache2 version 2.2.8-alt1
2008-02-29 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.8-alt1
2008-02-29 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.8-alt1
2008-02-29 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200803-19 (apache)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200803-19 (apache)
2008-09-24 00:00:00
Slackware: Security Advisory (SSA:2008-045-01)
2012-09-10 00:00:00
nessus
nessus
openSUSE 10 Security Update : apache2 (apache2-5127)
2008-04-04 00:00:00
GLSA-200803-19 : Apache: Multiple vulnerabilities
2008-03-13 00:00:00
Fedora 8 : httpd-2.2.8-1.fc8 (2008-1695)
2008-02-18 00:00:00
slackware
slackware
[slackware-security] httpd
2008-02-15 01:22:54
gentoo
gentoo
Apache: Multiple vulnerabilities
2008-03-11 00:00:00
oraclelinux
oraclelinux
Moderate: httpd security update
2008-01-15 00:00:00
centos
centos
httpd, mod_ssl security update
2008-01-16 22:06:46
suse
suse
cross site scripting in apache2,apache
2008-04-04 16:29:16
ubuntu
ubuntu
Apache vulnerabilities
2008-02-04 00:00:00

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

0.048 Low

EPSS

Percentile

92.8%

JSON
Related for UB:CVE-2007-6422
cvelist1prion1veracode1nvd1cve1debiancve1httpd1securityvulns2seebug1redhat2fedora2altlinux3openvas16nessus16slackware1gentoo1oraclelinux1centos1suse1ubuntu1