Denial of Service Vulnerability in mod_auth_mellon Module

Denial of Service Vulnerability in mod_auth_mellon Module

CVE-2014-8567 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:C/A:C

The mod_auth_mellon module before 0.8.1 allows remote attackers to cause a denial of service (Apache HTTP server crash) via a crafted logout request that triggers a read of uninitialized data.

Learn more about our Cis Benchmark Audit For Apache Http Server.