Apache : Security Vulnerabilities, CVEs, Published In May 2013 (Memory corruption)
The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (segmentation fault and crash) via a log REPORT request with an invalid limit, which triggers an access of an uninitialized variable.
Max CVSS
5.0
EPSS Score
6.39%
Published
2013-05-02
Updated
2017-09-19
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a PROPFIND request for an activity URL.
Max CVSS
4.3
EPSS Score
1.26%
Published
2013-05-02
Updated
2017-09-19
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an anonymous LOCK for a URL that does not exist.
Max CVSS
5.0
EPSS Score
10.98%
Published
2013-05-02
Updated
2017-09-19
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a LOCK on an activity URL.
Max CVSS
4.0
EPSS Score
0.39%
Published
2013-05-02
Updated
2018-10-30
4 vulnerabilities found