Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2009-1902
HistoryJun 03, 2009 - 4:33 p.m.

CVE-2009-1902

2009-06-0316:33:00
mitre
www.cve.org

6.2 Medium

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.8%

JSON

The multipart processor in ModSecurity before 2.5.9 allows remote attackers to cause a denial of service (crash) via a multipart form datapost request with a missing part header name, which triggers a NULL pointer dereference.

Related

cve 1
nvd 1
nessus 4
ubuntucve 1
prion 1
openvas 12
securityvulns 2
gentoo 1
cve
cve
CVE-2009-1902
2009-06-03 17:00:00
nvd
nvd
CVE-2009-1902
2009-06-03 17:00:00
nessus
nessus
ModSecurity < 2.5.9 Multipart Request Header Name DoS
2013-07-02 00:00:00
Fedora 10 : mod_security-2.5.9-1.fc10 (2009-2686)
2009-04-23 00:00:00
Fedora 9 : mod_security-2.5.9-1.fc9 (2009-2654)
2009-03-16 00:00:00
ubuntucve
ubuntucve
CVE-2009-1902
2009-06-03 00:00:00
prion
prion
Null pointer dereference
2009-06-03 17:00:00
openvas
openvas
Fedora Core 10 FEDORA-2009-2686 (mod_security)
2009-03-20 00:00:00
Mandrake Security Advisory MDVSA-2009:184 (apache-mod_security)
2009-08-17 00:00:00
Gentoo Security Advisory GLSA 200907-02 (mod_security)
2009-07-06 00:00:00
securityvulns
securityvulns
ModSecurity multiple security vulnerabilities
2009-07-03 00:00:00
[ GLSA 200907-02 ] ModSecurity: Denial of Service
2009-07-03 00:00:00
gentoo
gentoo
ModSecurity: Denial of service
2009-07-02 00:00:00

6.2 Medium

AI Score

Confidence

Low

0.036 Low

EPSS

Percentile

91.8%

JSON
Related for CVELIST:CVE-2009-1902
cve1nvd1nessus4ubuntucve1prion1openvas12securityvulns2gentoo1