AI Score
Confidence
High
EPSS
Percentile
43.0%
The multisite feature in Drupal 6.x before 6.32 and 7.x before 7.29 allows remote attackers to cause a denial of service via a crafted HTTP Host header, related to determining which configuration file to use.
www.debian.org/security/2014/dsa-2983
www.drupal.org/SA-CORE-2014-003