Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service (NULL pointer dereference, process crash, and disk consumption) via a POST request with a large body and a crafted Content-Type header.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apache HTTP Server和ModSecurity 代码问题漏洞
Vulnerability Description
Apache HTTP Server是美国阿帕奇(Apache)软件基金会开发和维护的一个开源网页服务器,该服务器可在大多数电脑操作系统中运行,并具有快速、可靠且可通过简单的API进行扩充的特点。ModSecurity是Trustwave's SpiderLabs团队开发的一款Web应用防火墙(WAF)。 Apache HTTP Server的ModSecurity模块2.7.4之前的版本中存在代码问题漏洞。远程攻击者可通过发送带有大的正文和特制的Content-Type头的POST请求,利用该漏洞造成拒
CVSS Information
N/A
Vulnerability Type
N/A