CVE-2011-1921
- EPSS 5.99%
- Veröffentlicht 06.06.2011 19:55:02
- Zuletzt bearbeitet 16.06.2026 23:30:22
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit option is disabled, does not properly enforce permissions for files that had been publicly reada...
CVE-2011-1783
- EPSS 6.74%
- Veröffentlicht 06.06.2011 19:55:01
- Zuletzt bearbeitet 16.06.2026 23:30:01
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit option is enabled, allows remote attackers to cause a denial of service (infinite loop and memor...
- EPSS 8.48%
- Veröffentlicht 06.06.2011 19:55:01
- Zuletzt bearbeitet 16.06.2026 23:29:57
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.17, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request for a baselined WebDAV resource, as e...
CVE-2011-0715
- EPSS 6.31%
- Veröffentlicht 11.03.2011 22:55:05
- Zuletzt bearbeitet 16.06.2026 23:27:56
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.16, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request that contains a lock token.
CVE-2010-4644
- EPSS 4.46%
- Veröffentlicht 07.01.2011 19:00:20
- Zuletzt bearbeitet 16.06.2026 23:25:14
Multiple memory leaks in rev_hunt.c in Apache Subversion before 1.6.15 allow remote authenticated users to cause a denial of service (memory consumption and daemon crash) via the -g option to the blame command.
CVE-2010-4539
- EPSS 5.14%
- Veröffentlicht 07.01.2011 19:00:19
- Zuletzt bearbeitet 16.06.2026 23:25:01
The walk function in repos.c in the mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.15, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via vecto...
- EPSS 4.22%
- Veröffentlicht 04.10.2010 21:00:04
- Zuletzt bearbeitet 16.06.2026 23:22:34
authz.c in the mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x before 1.5.8 and 1.6.x before 1.6.13, when SVNPathAuthz short_circuit is enabled, does not properly handle a named repository as a rule scope, whi...