Home > Vulnerability Database > CVE-2007-3303

Mend.io Vulnerability Database

CVE-2007-3303

Date: June 20, 2007

Apache httpd 2.0.59 and 2.2.4, with the Prefork MPM module, allows local users to cause a denial of service via certain code sequences executed in a worker process that (1) stop request processing by killing all worker processes and preventing creation of replacements or (2) hang the system by forcing the master process to fork an arbitrarily large number of worker processes. NOTE: This might be an inherent design limitation of Apache with respect to worker processes in hosted environments.

Severity Score

6.2

Related Resources (9)

Url: http://www.securityfocus.com/bid/24215

Url: https://nvd.nist.gov/vuln/detail/CVE-2007-3303

Url: http://osvdb.org/37050

Url: http://www.securityfocus.com/archive/1/469899/100/0/threaded

Url: http://securityreason.com/securityalert/2814

Url: https://security-tracker.debian.org/tracker/CVE-2007-3303

Url: http://security.psnc.pl/files/apache_report.pdf

Url: http://www.securityfocus.com/archive/1/471832/100/0/threaded

Url: https://www.mend.io/vulnerability-database/CVE-2007-3303

Severity Score

6.2

Weakness Type (CWE)

Code Injection

CWE-94

CVSS v3.1

Base Score:	6.2
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

CVSS v2

Base Score:	4.9
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	COMPLETE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2007-3303

Date: June 20, 2007

Severity Score

Related Resources (9)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?