CVE-2007-1349

2007-03-30T00:19:00
ID CVE-2007-1349
Type cve
Reporter cve@mitre.org
Modified 2017-10-11T01:31:00

Description

PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI.