Vulnerability CVE-2011-1752: Information

Description

The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.17, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request for a baselined WebDAV resource, as exploited in the wild in May 2011.

Severity: MEDIUM (5.0)

URL: https://nvd.nist.gov/vuln/detail/CVE-2011-1752
Published: June 6, 2011
Modified: Oct. 5, 2020
Error type identifier: CWE-476

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://bugzilla.redhat.com/show_bug.cgi?id=709111
  • Issue Tracking
  • Third Party Advisory
44633
  • Third Party Advisory
http://svn.apache.org/repos/asf/subversion/tags/1.6.17/CHANGES
  • Release Notes
  • Third Party Advisory
http://subversion.apache.org/security/CVE-2011-1752-advisory.txt
  • Vendor Advisory
DSA-2251
  • Third Party Advisory
44681
  • Third Party Advisory
48091
  • Third Party Advisory
  • VDB Entry
MDVSA-2011:106
  • Third Party Advisory
RHSA-2011:0862
  • Third Party Advisory
FEDORA-2011-8352
  • Third Party Advisory
1025617
  • Third Party Advisory
  • VDB Entry
RHSA-2011:0861
  • Third Party Advisory
USN-1144-1
  • Third Party Advisory
44888
  • Third Party Advisory
44849
  • Third Party Advisory
45162
  • Third Party Advisory
44879
  • Third Party Advisory
FEDORA-2011-8341
  • Third Party Advisory
http://support.apple.com/kb/HT5130
  • Vendor Advisory
APPLE-SA-2012-02-01-1
  • Mailing List
  • Third Party Advisory
oval:org.mitre.oval:def:18922
  • Third Party Advisory

    1. Configuration 1

      cpe:2.3:a:apache:subversion:*:*:*:*:*:*:*:*
      End excliding
      1.6.17

      Configuration 2

      cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*
      cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*

      Configuration 3

      cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
      cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*

      Configuration 4

      cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*
      cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:*

      Configuration 5

      cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
      End excliding
      10.7.3
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Version: v24.5.3
Back to top