CVE-2007-1863
EPSS 28.0%
Description
cache_util.c in the mod_cache module in Apache HTTP Server (httpd), when caching is enabled and a threaded Multi-Processing Module (MPM) is used, allows remote attackers to cause a denial of service (child processing handler crash) via a request with the (1) s-maxage, (2) max-age, (3) min-fresh, or (4) max-stale Cache-Control headers without a value.
How to fix CVE-2007-1863
To remediate CVE-2007-1863, upgrade the affected package to a fixed version below.
- Debian/apache2—upgrade to 2.2.4-1 or later
Is CVE-2007-1863 being exploited?
Moderate — EPSS is 28.0%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 2.2.4-1