CVE-2007-1349

Impact:
Moderate
Public Date:
2007-03-22
Bugzilla:
240423: CVE-2007-1349 mod_perl PerlRun denial of service

The MITRE CVE dictionary describes this issue as:

PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI.

Find out more about CVE-2007-1349 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Satellite Proxy v 4.2 (RHEL v.4 AS) RHSA-2008:0523 2008-06-30
Red Hat Certificate System 7.3 for 4AS RHSA-2010:0602 2010-08-04
Red Hat Satellite Proxy v 5.0 (RHEL v.4 AS) RHSA-2008:0263 2008-05-20
Red Hat Satellite 5.0 (RHEL v.4 AS) RHSA-2008:0261 2008-05-20
Red Hat Satellite v 4.2 (RHEL v.3 AS) RHSA-2008:0524 2008-06-30
Red Hat Satellite 5.1 (RHEL v.4 AS) RHSA-2008:0630 2008-08-13
Red Hat Enterprise Linux 5 (mod_perl) RHSA-2007:0395 2007-06-14
Red Hat Satellite Proxy v 5.1 (RHEL v.4 AS) (mod_perl) RHSA-2008:0627 2008-08-13
Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (mod_perl) RHSA-2007:0396 2007-06-20
Red Hat Satellite v 4.2 (RHEL v.4 AS) RHSA-2008:0524 2008-06-30
Red Hat Satellite Proxy v 4.2 (RHEL v.3 AS) RHSA-2008:0523 2008-06-30
Red Hat Enterprise Linux 2.1 (mod_perl) RHSA-2007:0486 2007-06-18
Red Hat Enterprise Linux 3 (mod_perl) RHSA-2007:0395 2007-06-14
Red Hat Enterprise Linux 4 (mod_perl) RHSA-2007:0395 2007-06-14

Mitigation

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.