mod_access_referer 1.0.2 allows remote attackers to cause a denial of service (crash) via a malformed Referer header that is missing a hostname, as parsed by the ap_parse_uri_components function in Apache, which triggers a null dereference.
Score: 1.5
Priority: P4 - Informational (Low)
Score: 0.07086
Percentile:
0.91082
CVSS v2 Score: 5.0
Severity: