Lucene search

FreeBSDAF747389-42BA-11D9-BD37-00065BE4B5B6

HistoryApr 16, 2003 - 12:00 a.m.

mod_access_referer -- null pointer dereference vulnerability

2003-04-1600:00:00

vuxml.freebsd.org

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.038 Low

EPSS

Percentile

91.9%

JSON

A malformed Referer header field causes the Apache
ap_parse_uri_components function to discard it with the
result that a pointer is not initialized. The
mod_access_referer module does not take this into account
with the result that it may use such a pointer.
The null pointer vulnerability may possibly be used in a
remote denial of service attack against affected Apache
servers.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchmod_access_referer< 1.0.2_1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	mod_access_referer	< 1.0.2_1	UNKNOWN

References

marc.theaimsgroup.com/?l=full-disclosure&m=105053485515811

secunia.com/advisories/8612/

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.038 Low

EPSS

Percentile

91.9%

JSON

Related for AF747389-42BA-11D9-BD37-00065BE4B5B6