Lucene search

RedhatCVE-2010-4539

HistoryJan 07, 2011 - 7:00 p.m.

CVE-2010-4539

2011-01-0719:00:19

CWE-399

redhat

web.nvd.nist.gov

cve-2010-4539

apache http server

mod_dav_svn

denial of service

null pointer dereference

daemon crash

svnparentpath collections

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

AI Score

Confidence

Low

EPSS

0.011

Percentile

84.7%

JSON

The walk function in repos.c in the mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.15, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger the walking of SVNParentPath collections.

Affected configurations

Nvd

Node

apachesubversionRange≤1.6.14

apachesubversionMatch0.6

apachesubversionMatch0.7

apachesubversionMatch0.8

apachesubversionMatch0.9

apachesubversionMatch0.10.0

apachesubversionMatch0.10.1

apachesubversionMatch0.10.2

apachesubversionMatch0.11.1

apachesubversionMatch0.12.0

apachesubversionMatch0.13.0

apachesubversionMatch0.13.1

apachesubversionMatch0.13.2

apachesubversionMatch0.14.0

apachesubversionMatch0.14.1

apachesubversionMatch0.14.2

apachesubversionMatch0.14.3

apachesubversionMatch0.14.4

apachesubversionMatch0.14.5

apachesubversionMatch0.15

apachesubversionMatch0.16

apachesubversionMatch0.16.1

apachesubversionMatch0.17.0

apachesubversionMatch0.17.1

apachesubversionMatch0.18.0

apachesubversionMatch0.18.1

apachesubversionMatch0.19.0

apachesubversionMatch0.19.1

apachesubversionMatch0.20.0

apachesubversionMatch0.20.1

apachesubversionMatch0.21.0

apachesubversionMatch0.22.0

apachesubversionMatch0.22.1

apachesubversionMatch0.22.2

apachesubversionMatch0.23.0

apachesubversionMatch0.24.0

apachesubversionMatch0.24.1

apachesubversionMatch0.24.2

apachesubversionMatch0.25.0

apachesubversionMatch0.26.0

apachesubversionMatch0.27.0

apachesubversionMatch0.28.0

apachesubversionMatch0.28.1

apachesubversionMatch0.28.2

apachesubversionMatch0.29.0

apachesubversionMatch0.30.0

apachesubversionMatch0.31.0

apachesubversionMatch0.32.1

apachesubversionMatch0.33.0

apachesubversionMatch0.33.1

apachesubversionMatch0.34.0

apachesubversionMatch0.35.0

apachesubversionMatch0.35.1

apachesubversionMatch0.36.0

apachesubversionMatch0.37.0

apachesubversionMatch1.0.0

apachesubversionMatch1.0.1

apachesubversionMatch1.0.2

apachesubversionMatch1.0.3

apachesubversionMatch1.0.4

apachesubversionMatch1.0.5

apachesubversionMatch1.0.6

apachesubversionMatch1.0.7

apachesubversionMatch1.0.8

apachesubversionMatch1.0.9

apachesubversionMatch1.1.0

apachesubversionMatch1.1.1

apachesubversionMatch1.1.2

apachesubversionMatch1.1.3

apachesubversionMatch1.1.4

apachesubversionMatch1.2.0

apachesubversionMatch1.2.1

apachesubversionMatch1.2.2

apachesubversionMatch1.2.3

apachesubversionMatch1.3.0

apachesubversionMatch1.3.1

apachesubversionMatch1.3.2

apachesubversionMatch1.4.0

apachesubversionMatch1.4.1

apachesubversionMatch1.4.2

apachesubversionMatch1.4.3

apachesubversionMatch1.4.4

apachesubversionMatch1.4.5

apachesubversionMatch1.4.6

apachesubversionMatch1.5.0

apachesubversionMatch1.5.1

apachesubversionMatch1.5.2

apachesubversionMatch1.5.3

apachesubversionMatch1.5.4

apachesubversionMatch1.5.5

apachesubversionMatch1.5.6

apachesubversionMatch1.5.7

apachesubversionMatch1.5.8

apachesubversionMatch1.6.0

apachesubversionMatch1.6.1

apachesubversionMatch1.6.2

apachesubversionMatch1.6.3

apachesubversionMatch1.6.4

apachesubversionMatch1.6.5

apachesubversionMatch1.6.6

apachesubversionMatch1.6.7

apachesubversionMatch1.6.8

apachesubversionMatch1.6.9

apachesubversionMatch1.6.10

apachesubversionMatch1.6.11

apachesubversionMatch1.6.12

apachesubversionMatch1.6.13

apachesubversionMatchm1

apachesubversionMatchm2

apachesubversionMatchm3

apachesubversionMatchm4\/m5

VendorProductVersionCPE
apachesubversion*cpe:2.3:a:apache:subversion:*:*:*:*:*:*:*:*
apachesubversion0.6cpe:2.3:a:apache:subversion:0.6:*:*:*:*:*:*:*
apachesubversion0.7cpe:2.3:a:apache:subversion:0.7:*:*:*:*:*:*:*
apachesubversion0.8cpe:2.3:a:apache:subversion:0.8:*:*:*:*:*:*:*
apachesubversion0.9cpe:2.3:a:apache:subversion:0.9:*:*:*:*:*:*:*
apachesubversion0.10.0cpe:2.3:a:apache:subversion:0.10.0:*:*:*:*:*:*:*
apachesubversion0.10.1cpe:2.3:a:apache:subversion:0.10.1:*:*:*:*:*:*:*
apachesubversion0.10.2cpe:2.3:a:apache:subversion:0.10.2:*:*:*:*:*:*:*
apachesubversion0.11.1cpe:2.3:a:apache:subversion:0.11.1:*:*:*:*:*:*:*
apachesubversion0.12.0cpe:2.3:a:apache:subversion:0.12.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apache	subversion	*	cpe:2.3:a:apache:subversion::::::::
apache	subversion	0.6	cpe:2.3:a:apache:subversion:0.6:::::::*
apache	subversion	0.7	cpe:2.3:a:apache:subversion:0.7:::::::*
apache	subversion	0.8	cpe:2.3:a:apache:subversion:0.8:::::::*
apache	subversion	0.9	cpe:2.3:a:apache:subversion:0.9:::::::*
apache	subversion	0.10.0	cpe:2.3:a:apache:subversion:0.10.0:::::::*
apache	subversion	0.10.1	cpe:2.3:a:apache:subversion:0.10.1:::::::*
apache	subversion	0.10.2	cpe:2.3:a:apache:subversion:0.10.2:::::::*
apache	subversion	0.11.1	cpe:2.3:a:apache:subversion:0.11.1:::::::*
apache	subversion	0.12.0	cpe:2.3:a:apache:subversion:0.12.0:::::::*