5

CVE-2014-3580

The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a REPORT request for a resource that does not exist.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ApacheSubversion Version1.0.0
ApacheSubversion Version1.0.1
ApacheSubversion Version1.0.2
ApacheSubversion Version1.0.3
ApacheSubversion Version1.0.4
ApacheSubversion Version1.0.5
ApacheSubversion Version1.0.6
ApacheSubversion Version1.0.7
ApacheSubversion Version1.0.8
ApacheSubversion Version1.0.9
ApacheSubversion Version1.1.0
ApacheSubversion Version1.1.1
ApacheSubversion Version1.1.2
ApacheSubversion Version1.1.3
ApacheSubversion Version1.1.4
ApacheSubversion Version1.2.0
ApacheSubversion Version1.2.1
ApacheSubversion Version1.2.2
ApacheSubversion Version1.2.3
ApacheSubversion Version1.3.0
ApacheSubversion Version1.3.1
ApacheSubversion Version1.3.2
ApacheSubversion Version1.4.0
ApacheSubversion Version1.4.1
ApacheSubversion Version1.4.2
ApacheSubversion Version1.4.3
ApacheSubversion Version1.4.4
ApacheSubversion Version1.4.5
ApacheSubversion Version1.4.6
ApacheSubversion Version1.5.0
ApacheSubversion Version1.5.1
ApacheSubversion Version1.5.2
ApacheSubversion Version1.5.3
ApacheSubversion Version1.5.4
ApacheSubversion Version1.5.5
ApacheSubversion Version1.5.6
ApacheSubversion Version1.5.7
ApacheSubversion Version1.5.8
ApacheSubversion Version1.6.0
ApacheSubversion Version1.6.1
ApacheSubversion Version1.6.2
ApacheSubversion Version1.6.3
ApacheSubversion Version1.6.4
ApacheSubversion Version1.6.5
ApacheSubversion Version1.6.6
ApacheSubversion Version1.6.7
ApacheSubversion Version1.6.8
ApacheSubversion Version1.6.9
ApacheSubversion Version1.6.10
ApacheSubversion Version1.6.11
ApacheSubversion Version1.6.12
ApacheSubversion Version1.6.13
ApacheSubversion Version1.6.14
ApacheSubversion Version1.6.15
ApacheSubversion Version1.6.16
ApacheSubversion Version1.6.17
ApacheSubversion Version1.6.18
ApacheSubversion Version1.6.19
ApacheSubversion Version1.6.20
ApacheSubversion Version1.6.21
ApacheSubversion Version1.6.23
ApacheSubversion Version1.7.0
ApacheSubversion Version1.7.1
ApacheSubversion Version1.7.2
ApacheSubversion Version1.7.3
ApacheSubversion Version1.7.4
ApacheSubversion Version1.7.5
ApacheSubversion Version1.7.6
ApacheSubversion Version1.7.7
ApacheSubversion Version1.7.8
ApacheSubversion Version1.7.9
ApacheSubversion Version1.7.10
ApacheSubversion Version1.7.11
ApacheSubversion Version1.7.12
ApacheSubversion Version1.7.13
ApacheSubversion Version1.7.14
ApacheSubversion Version1.7.15
ApacheSubversion Version1.7.16
ApacheSubversion Version1.7.17
ApacheSubversion Version1.7.18
ApacheSubversion Version1.7.19
ApacheSubversion Version1.8.0
ApacheSubversion Version1.8.1
ApacheSubversion Version1.8.2
ApacheSubversion Version1.8.3
ApacheSubversion Version1.8.4
ApacheSubversion Version1.8.5
ApacheSubversion Version1.8.6
ApacheSubversion Version1.8.7
ApacheSubversion Version1.8.8
ApacheSubversion Version1.8.9
ApacheSubversion Version1.8.10
DebianDebian Linux Version7.0
AppleXCode Version6.1.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 10.67% 0.952
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.apple.com/archives/security-announce/2015/Mar/msg00003.html
Third Party Advisory
Mailing List
https://support.apple.com/HT204427
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-0165.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2015-0166.html
Third Party Advisory
http://secunia.com/advisories/61131
http://subversion.apache.org/security/CVE-2014-3580-advisory.txt
Patch
Vendor Advisory
http://www.debian.org/security/2014/dsa-3107
Third Party Advisory
http://www.securityfocus.com/bid/71726
http://www.ubuntu.com/usn/USN-2721-1