mod_proxy_balancer is shipped in Red Hat Enterprise Linux 5 and Red Hat Application Stack v2. We do not plan on correcting this issue as it poses a very low security risk: The balancer manager is not enabled by default, the user targeted by the CSRF would need to be authenticated, and the consequences of an exploit would be limited to a web server denial of service.
Red Hat Security Errata
|Red Hat Application Stack v2 for Enterprise Linux (v.5)||RHSA-2008:0966||2008-12-04|
CVE description copyright © 2017, The MITRE Corporation