PublicDate: 2008-01-12 00:46:00 UTC
Candidate: CVE-2007-6420
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6420
 https://ubuntu.com/security/notices/USN-731-1
Description:
 Cross-site request forgery (CSRF) vulnerability in the balancer-manager in
 mod_proxy_balancer for Apache HTTP Server 2.2.x allows remote attackers to
 gain privileges via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to: mdeslaur
CVSS: 

Patches_apache2:
 upstream: http://svn.apache.org/viewvc?view=rev&revision=661666
 upstream: http://svn.apache.org/viewvc/httpd/httpd/tags/2.2.9/modules/proxy/mod_proxy_balancer.c?r1=608192&r2=663514
upstream_apache2: released (2.2.9-1)
dapper_apache2: not-affected (code not present)
edgy_apache2: needed (reached end-of-life)
feisty_apache2: needed (reached end-of-life)
gutsy_apache2: released (2.2.4-3ubuntu0.2)
hardy_apache2: released (2.2.8-1ubuntu0.4)
intrepid_apache2: released (2.2.9-1ubuntu1)
devel_apache2: released (2.2.9-1ubuntu1)