SSRF Vulnerability in Apache HTTP Server Leads to NTML Hash Leak
A Server-Side Request Forgery (SSRF) issue exists in Apache HTTP Server on Windows when using mod_rewrite in the server/vhost context. This flaw may leak NTLM hashes to a malicious server through SSRF and bad requests.
Users are advised to upgrade to version 2.4.62 to solve this problem.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache http server |