7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.4 High
AI Score
Confidence
High
0.063 Low
EPSS
Percentile
93.7%
Heap-based buffer overflow in the sec_filter_out function in mod_security 1.7RC1 through 1.7.1 in Apache 2 allows remote attackers to execute arbitrary code via a server side script that sends a large amount of data.
CPE | Name | Operator | Version |
---|---|---|---|
mod_security:mod_security | mod security | eq | 1.7 |
mod_security:mod_security | mod security | eq | 1.7.1 |