CVE-2007-6422

EPSS 5.6%

Published: 1/8/2008Modified: 4/28/2026

Description

The balancer_handler function in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service (child process crash) via an invalid bb variable.

Affected packages (1)

Debian/apache2from 0, < 2.2.8-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6422