CVE-2014-8567: mod_auth_mellon: logout processing leads to denial of service

Severity: Critical

CVSS Score: 9.4

The mod_auth_mellon module before 0.8.1 allows remote attackers to cause a denial of service (Apache HTTP server crash) via a crafted logout request that triggers a read of uninitialized data.