This security advisory describes one medium risk vulnerability.
Exploit availability: NoDescription
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to application does not properly control consumption of internal resources while performing global matching of regular expressions in a combination of the ModSecurity “capture” action. A remote attacker can send a specially crafted HTTP request to the server and perform a denial of service (DoS) attack.Mitigation
A patch is available in vendor's repository:
Vulnerable software versions
ModSecurity: 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4CPE
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.