[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2011-0715Date: (C)2011-03-11   (M)2024-03-26


The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.16, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request that contains a lock token.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.3
Exploit Score: 8.6
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECTRACK-1025161
SECUNIA-43583
SECUNIA-43603
SECUNIA-43672
SECUNIA-43794
BID-46734
OSVDB-70964
ADV-2011-0567
ADV-2011-0568
ADV-2011-0624
ADV-2011-0660
ADV-2011-0684
ADV-2011-0776
ADV-2011-0885
APPLE-SA-2011-06-23-1
DSA-2181
FEDORA-2011-2657
FEDORA-2011-2698
FEDORA-2011-3775
MDVSA-2011:067
RHSA-2011:0327
RHSA-2011:0328
SSA:2011-070-01
SUSE-SR:2011:005
USN-1096-1
http://svn.haxx.se/dev/archive-2011-03/0122.shtml
http://subversion.apache.org/security/CVE-2011-0715-advisory.txt
http://support.apple.com/kb/HT4723
http://svn.apache.org/repos/asf/subversion/tags/1.6.16/CHANGES
http://svn.apache.org/viewvc?view=revision&revision=1071239
http://svn.apache.org/viewvc?view=revision&revision=1071307
https://bugzilla.redhat.com/show_bug.cgi?id=680755
oval:org.mitre.oval:def:18967
subversion-moddavsvn-dos(65876)

CPE    111
cpe:/a:apache:subversion:0.21.0
cpe:/a:apache:subversion:0.25.0
cpe:/a:apache:subversion:0.6
cpe:/a:apache:subversion:0.7
...
OVAL    16
oval:org.secpod.oval:def:400300
oval:org.secpod.oval:def:700274
oval:org.secpod.oval:def:201559
oval:org.secpod.oval:def:201535
...

© SecPod Technologies