CVE-2014-0117

The mod_proxy module in the Apache HTTP Server 2.4.x before 2.4.10, when a reverse proxy is enabled, allows remote attackers to cause a denial of service (child-process crash) via a crafted HTTP Connection header.

Published : 2014-07-20 11:12 Updated : 2019-08-15 09:15

4.3
CVSS Score More info
Score 4.3 / 10
4.3
Vendor Product Version URI
Apple Mac Os X 10.10.2 cpe:/o:apple:mac_os_x:10.10.2
Apache Http Server 2.4.8 cpe:/a:apache:http_server:2.4.8
Apache Http Server 2.4.9 cpe:/a:apache:http_server:2.4.9
Apache Http Server 2.4.6 cpe:/a:apache:http_server:2.4.6
Apache Http Server 2.4.7 cpe:/a:apache:http_server:2.4.7
  1. Apache (1) Search CVE
    1. Http Server (4) Search CVE
      1. 2.4.8
      2. 2.4.9
      3. 2.4.6
      4. 2.4.7
  2. Apple (1) Search CVE
    1. Mac Os X (1) Search CVE
      1. 10.10.2

CWE

ID Name Description Links
CWE-20 Improper Input Validation The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program. CVE