4.3

CVE-2011-0715

The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.16, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request that contains a lock token.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ApacheSubversion Version <= 1.6.15
ApacheSubversion Version0.6
ApacheSubversion Version0.7
ApacheSubversion Version0.8
ApacheSubversion Version0.9
ApacheSubversion Version0.10.0
ApacheSubversion Version0.10.1
ApacheSubversion Version0.10.2
ApacheSubversion Version0.11.1
ApacheSubversion Version0.12.0
ApacheSubversion Version0.13.0
ApacheSubversion Version0.13.1
ApacheSubversion Version0.13.2
ApacheSubversion Version0.14.0
ApacheSubversion Version0.14.1
ApacheSubversion Version0.14.2
ApacheSubversion Version0.14.3
ApacheSubversion Version0.14.4
ApacheSubversion Version0.14.5
ApacheSubversion Version0.15
ApacheSubversion Version0.16
ApacheSubversion Version0.16.1
ApacheSubversion Version0.17.0
ApacheSubversion Version0.17.1
ApacheSubversion Version0.18.0
ApacheSubversion Version0.18.1
ApacheSubversion Version0.19.0
ApacheSubversion Version0.19.1
ApacheSubversion Version0.20.0
ApacheSubversion Version0.20.1
ApacheSubversion Version0.21.0
ApacheSubversion Version0.22.0
ApacheSubversion Version0.22.1
ApacheSubversion Version0.22.2
ApacheSubversion Version0.23.0
ApacheSubversion Version0.24.0
ApacheSubversion Version0.24.1
ApacheSubversion Version0.24.2
ApacheSubversion Version0.25.0
ApacheSubversion Version0.26.0
ApacheSubversion Version0.27.0
ApacheSubversion Version0.28.0
ApacheSubversion Version0.28.1
ApacheSubversion Version0.28.2
ApacheSubversion Version0.29.0
ApacheSubversion Version0.30.0
ApacheSubversion Version0.31.0
ApacheSubversion Version0.32.1
ApacheSubversion Version0.33.0
ApacheSubversion Version0.33.1
ApacheSubversion Version0.34.0
ApacheSubversion Version0.35.0
ApacheSubversion Version0.35.1
ApacheSubversion Version0.36.0
ApacheSubversion Version0.37.0
ApacheSubversion Version1.0.0
ApacheSubversion Version1.0.1
ApacheSubversion Version1.0.2
ApacheSubversion Version1.0.3
ApacheSubversion Version1.0.4
ApacheSubversion Version1.0.5
ApacheSubversion Version1.0.6
ApacheSubversion Version1.0.7
ApacheSubversion Version1.0.8
ApacheSubversion Version1.0.9
ApacheSubversion Version1.1.0
ApacheSubversion Version1.1.1
ApacheSubversion Version1.1.2
ApacheSubversion Version1.1.3
ApacheSubversion Version1.1.4
ApacheSubversion Version1.2.0
ApacheSubversion Version1.2.1
ApacheSubversion Version1.2.2
ApacheSubversion Version1.2.3
ApacheSubversion Version1.3.0
ApacheSubversion Version1.3.1
ApacheSubversion Version1.3.2
ApacheSubversion Version1.4.0
ApacheSubversion Version1.4.1
ApacheSubversion Version1.4.2
ApacheSubversion Version1.4.3
ApacheSubversion Version1.4.4
ApacheSubversion Version1.4.5
ApacheSubversion Version1.4.6
ApacheSubversion Version1.5.0
ApacheSubversion Version1.5.1
ApacheSubversion Version1.5.2
ApacheSubversion Version1.5.3
ApacheSubversion Version1.5.4
ApacheSubversion Version1.5.5
ApacheSubversion Version1.5.6
ApacheSubversion Version1.5.7
ApacheSubversion Version1.5.8
ApacheSubversion Version1.6.0
ApacheSubversion Version1.6.1
ApacheSubversion Version1.6.2
ApacheSubversion Version1.6.3
ApacheSubversion Version1.6.4
ApacheSubversion Version1.6.5
ApacheSubversion Version1.6.6
ApacheSubversion Version1.6.7
ApacheSubversion Version1.6.8
ApacheSubversion Version1.6.9
ApacheSubversion Version1.6.10
ApacheSubversion Version1.6.11
ApacheSubversion Version1.6.12
ApacheSubversion Version1.6.13
ApacheSubversion Version1.6.14
ApacheSubversion Versionm1
ApacheSubversion Versionm2
ApacheSubversion Versionm3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 6.31% 0.927
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.apple.com/archives/security-announce/2011//Jun/msg00000.html
http://support.apple.com/kb/HT4723
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056071.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056072.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056736.html
http://secunia.com/advisories/43583
http://secunia.com/advisories/43603
Vendor Advisory
http://secunia.com/advisories/43672
http://secunia.com/advisories/43794
http://securitytracker.com/id?1025161
http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.479953
http://subversion.apache.org/security/CVE-2011-0715-advisory.txt
Vendor Advisory
http://svn.apache.org/repos/asf/subversion/tags/1.6.16/CHANGES
http://svn.apache.org/viewvc?view=revision&revision=1071239
http://svn.apache.org/viewvc?view=revision&revision=1071307
Patch
http://svn.haxx.se/dev/archive-2011-03/0122.shtml
Patch
http://www.debian.org/security/2011/dsa-2181
http://www.mandriva.com/security/advisories?name=MDVSA-2011:067
http://www.osvdb.org/70964
http://www.securityfocus.com/bid/46734
http://www.ubuntu.com/usn/USN-1096-1
http://www.vupen.com/english/advisories/2011/0567
Vendor Advisory
http://www.vupen.com/english/advisories/2011/0568
http://www.vupen.com/english/advisories/2011/0624
http://www.vupen.com/english/advisories/2011/0660
http://www.vupen.com/english/advisories/2011/0684
http://www.vupen.com/english/advisories/2011/0776
http://www.vupen.com/english/advisories/2011/0885
https://bugzilla.redhat.com/show_bug.cgi?id=680755
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/65876
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18967
https://rhn.redhat.com/errata/RHSA-2011-0327.html
https://rhn.redhat.com/errata/RHSA-2011-0328.html