Description
Unknown vulnerability in mod_python 3.0.x before 3.0.4, and 2.7.x before 2.7.9, allows remote attackers to cause a denial of service (httpd crash) via a certain query string.
Affected products
- apache / mod_python2.7 – 2.7
- apache / mod_python2.7.1 – 2.7.1
- apache / mod_python2.7.2 – 2.7.2
- apache / mod_python2.7.3 – 2.7.3
- apache / mod_python2.7.4 – 2.7.4
- apache / mod_python2.7.5 – 2.7.5
- apache / mod_python2.7.6 – 2.7.6
- apache / mod_python2.7.7 – 2.7.7
- apache / mod_python2.7.8 – 2.7.8
- apache / mod_python3.0 – 3.0
- apache / mod_python3.0.1 – 3.0.1
- apache / mod_python3.0.2 – 3.0.2
- apache / mod_python3.0.3 – 3.0.3
References
- MISChttp://www.redhat.com/support/errata/RHSA-2004-058.html
- MISChttp://bugzilla.fedora.us/show_bug.cgi?id=1325
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A839
- MISChttp://www.modpython.org/pipermail/mod_python/2003-November/004005.html
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A828
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10259
- MISChttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000837
- VENDOR_ADVISORYhttp://www.debian.org/security/2004/dsa-452
- MISChttp://www.redhat.com/support/errata/RHSA-2004-063.html