CVE-2007-1349

描述

PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI.

受影響套件(1)

• Debian/libapache2-mod-perl2from 0, < 2.0.2-5

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-1349