CVE-2007-6422

Description

The balancer_handler function in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service (child process crash) via an invalid bb variable.

Software From Fixed in
apache / http_server 2.2 2.2.x
apache / http_server 2.2.1 2.2.1.x
apache / http_server 2.2.2 2.2.2.x
apache / http_server 2.2.3 2.2.3.x
apache / http_server 2.2.4 2.2.4.x
apache / http_server 2.2.6 2.2.6.x