Your submission was sent successfully! Close

CVE-2013-2765

Published: 15 July 2013

The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a denial of service (NULL pointer dereference, process crash, and disk consumption) via a POST request with a large body and a crafted Content-Type header.

Priority

Medium

Status

Package Release Status
modsecurity-apache
Launchpad, Ubuntu, Debian
artful Not vulnerable

lucid Does not exist

precise Does not exist
(precise was needed)
trusty Not vulnerable
(2.7.7-2)
upstream
Released (2.7.4)
vivid Does not exist

wily Not vulnerable

xenial Not vulnerable

yakkety Not vulnerable

zesty Not vulnerable