CVE-2007-3847

CVE-2007-3847 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The date handling code in modules/proxy/proxy_util.c (mod_proxy) in Apache 2.3.0, when using a threaded MPM, allows remote origin servers to cause a denial of service (caching forward proxy process crash) via crafted date headers that trigger a buffer over-read.

Learn more about our Cis Benchmark Audit For Apache Http Server.