Vulnerability & Exploit Database

Back to search

Apache HTTPD: mod_cache crash (CVE-2013-4352)

Severity CVSS Published Added Modified
4 (AV:N/AC:M/Au:N/C:N/I:N/A:P) July 18, 2014 July 18, 2014 July 28, 2014

Description

The affected asset is vulnerable to this vulnerability ONLY if it is running one of the following modules: mod_cache. Review your web server configuration for validation. A NULL pointer dereference was found in mod_cache. A malicious HTTP server could cause a crash in a caching forward proxy configuration. (Note that this vulnerability was fixed in the 2.4.7 release, but the security impact was not disclosed at the time of the release.)

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

apache-httpd-upgrade-2_4_7

Related Vulnerabilities