CVE-2007-6423Out-of-bounds Write in Apache Http Server

CWE-3995 documents5 sources
Severity
7.8HIGHNVD
EPSS
3.7%
top 12.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apache Http Server
Timeline
PublishedJan 12
Latest updateMay 1

Description

Unspecified vulnerability in mod_proxy_balancer for Apache HTTP Server 2.2.x before 2.2.7-dev, when running on Windows, allows remote attackers to trigger memory corruption via a long URL. NOTE: the vendor could not reproduce this issue

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

NVDapache/http_server4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-f5gq-mm82-r92q: ** DISPUTED ** Unspecified vulnerability in mod_proxy_balancer for Apache HTTP Server 22022-05-01
CVEList
CVE-2007-6423: Unspecified vulnerability in mod_proxy_balancer for Apache HTTP Server 22008-01-12

📋Vendor Advisories

2
Debian
CVE-2007-6423: apache2 - Unspecified vulnerability in mod_proxy_balancer for Apache HTTP Server 2.2.x bef...2007
Red Hat
CVE-2007-6423: Unspecified vulnerability in mod_proxy_balancer for Apache HTTP Server 2
CVE-2007-6423 — Out-of-bounds Write in Apache | cvebase