Apache » Subversion : Security Vulnerabilities, CVEs, Published In 2011 (Denial of service)
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit option is enabled, allows remote attackers to cause a denial of service (infinite loop and memory consumption) in opportunistic circumstances by requesting data.
Max CVSS
4.3
EPSS Score
0.72%
Published
2011-06-06
Updated
2020-10-05
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.17, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request for a baselined WebDAV resource, as exploited in the wild in May 2011.
Max CVSS
5.0
EPSS Score
0.72%
Published
2011-06-06
Updated
2020-10-05
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.16, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request that contains a lock token.
Max CVSS
4.3
EPSS Score
1.26%
Published
2011-03-11
Updated
2017-09-19
Multiple memory leaks in rev_hunt.c in Apache Subversion before 1.6.15 allow remote authenticated users to cause a denial of service (memory consumption and daemon crash) via the -g option to the blame command.
Max CVSS
3.5
EPSS Score
0.66%
Published
2011-01-07
Updated
2023-02-13
The walk function in repos.c in the mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.15, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger the walking of SVNParentPath collections.
Max CVSS
6.8
EPSS Score
0.55%
Published
2011-01-07
Updated
2023-02-13
5 vulnerabilities found