CVE-2009-1903

CVE-2009-1903 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The PDF XSS protection feature in ModSecurity before 2.5.8 allows remote attackers to cause a denial of service (Apache httpd crash) via a request for a PDF file that does not use the GET method.

Learn more about our Cis Benchmark Audit For Apache Http Server.