Full title: ModSecurity Remote Null Pointer Dereference Vulnerability 
Category: dos / poc
Platform: multiple
When ModSecurity receives a request body with a size bigger than the value set by the "SecRequestBodyInMemoryLimit" and with a "Content-Type" that has no request body processor mapped to it, ModSecurity will systematically crash on every call to "forceRequestBodyVariable" (in phase 1). This is the proof of concept exploit. Versions prior to 2.7.4 are affected.

# 0day.today @ http://0day.today/