Apache Httpd < 2.2.27: mod_log_config crash

2014-02-25T00:00:00
ID HTTPD:8533A90266872F140CC97CA384EE7E43
Type httpd
Reporter Rainer M Canavan
Modified 2014-03-26T00:00:00

Description

A flaw was found in mod_log_config. A remote attacker could send a specific truncated cookie causing a crash. This crash would only be a denial of service if using a threaded MPM.