SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2011-1752

Date: (C)2011-06-06 (M)2024-04-26

The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.17, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request for a baselined WebDAV resource, as exploited in the wild in May 2011.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL

Reference:

SECTRACK-1025617

APPLE-SA-2012-02-01-1

FEDORA-2011-8341

FEDORA-2011-8352

http://subversion.apache.org/security/CVE-2011-1752-advisory.txt

http://support.apple.com/kb/HT5130

http://svn.apache.org/repos/asf/subversion/tags/1.6.17/CHANGES

https://bugzilla.redhat.com/show_bug.cgi?id=709111

oval:org.mitre.oval:def:18922

cpe:/o:apple:mac_os_x
cpe:/o:canonical:ubuntu_linux:11.04
cpe:/o:debian:debian_linux:5.0
cpe:/o:debian:debian_linux:6.0
...

oval:org.secpod.oval:def:400300
oval:org.secpod.oval:def:600539
oval:org.secpod.oval:def:102727
oval:org.secpod.oval:def:102850
...

© SecPod Technologies