CVE-2007-1349
The MITRE CVE dictionary describes this issue as:
PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI.
Find out more about CVE-2007-1349 from the MITRE CVE dictionary dictionary and NIST NVD.
Red Hat Security Errata
| Platform | Errata | Release Date |
|---|---|---|
| Red Hat Satellite Proxy v 4.2 (RHEL v.4 AS) | RHSA-2008:0523 | 2008-06-30 |
| Red Hat Certificate System 7.3 for 4AS | RHSA-2010:0602 | 2010-08-04 |
| Red Hat Satellite Proxy v 5.0 (RHEL v.4 AS) | RHSA-2008:0263 | 2008-05-20 |
| Red Hat Satellite 5.0 (RHEL v.4 AS) | RHSA-2008:0261 | 2008-05-20 |
| Red Hat Satellite v 4.2 (RHEL v.3 AS) | RHSA-2008:0524 | 2008-06-30 |
| Red Hat Satellite 5.1 (RHEL v.4 AS) | RHSA-2008:0630 | 2008-08-13 |
| Red Hat Enterprise Linux 5 (mod_perl) | RHSA-2007:0395 | 2007-06-14 |
| Red Hat Satellite Proxy v 5.1 (RHEL v.4 AS) (mod_perl) | RHSA-2008:0627 | 2008-08-13 |
| Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (mod_perl) | RHSA-2007:0396 | 2007-06-20 |
| Red Hat Satellite v 4.2 (RHEL v.4 AS) | RHSA-2008:0524 | 2008-06-30 |
| Red Hat Satellite Proxy v 4.2 (RHEL v.3 AS) | RHSA-2008:0523 | 2008-06-30 |
| Red Hat Enterprise Linux 2.1 (mod_perl) | RHSA-2007:0486 | 2007-06-18 |
| Red Hat Enterprise Linux 3 (mod_perl) | RHSA-2007:0395 | 2007-06-14 |
| Red Hat Enterprise Linux 4 (mod_perl) | RHSA-2007:0395 | 2007-06-14 |
CVE description copyright © 2017, The MITRE Corporation