Endpoint Vulnerability

Apache Httpd - low:mod_log_config crash(CVE-2012-0021)

Description

A flaw was found in mod_log_config. If the '%{cookiename}C' log format string is in use, a remote attacker could send a specific cookie causing a crash. This crash would only be a denial of service if using a threaded MPM.

Affected Products

Apache Httpd

References

CVE-2012-0021,