Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
httpdApache Team FoundationHTTPD:5227799CC4172DBFA895A4F581F74C11
HistoryJun 06, 2009 - 12:00 a.m.

Apache Httpd < 2.2.12 : APR-util XML DoS

2009-06-0600:00:00
Apache Team Foundation
httpd.apache.org
10

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.221 Low

EPSS

Percentile

96.5%

JSON

A denial of service flaw was found in the bundled copy of the APR-util library Extensible Markup Language (XML) parser. A remote attacker could create a specially-crafted XML document that would cause excessive memory consumption when processed by the XML decoding engine.

Related

openvas 52
seebug 1
nvd 2
nessus 31
cve 2
ubuntucve 2
slackware 2
debiancve 2
prion 2
cvelist 2
centos 2
freebsd 2
redhat 2
gentoo 1
fedora 3
securityvulns 2
oraclelinux 2
ubuntu 2
altlinux 3
oracle 1
openvas
openvas
Apache APR-Utils XML Parser Denial of Service Vulnerability
2009-06-24 00:00:00
Apache APR-Utils XML Parser Denial of Service Vulnerability
2009-06-24 00:00:00
Slackware Advisory SSA:2009-167-02 apr-util
2012-09-11 00:00:00
seebug
seebug
Apache APR-util xml/apr_xml.cζ–‡δ»Άζ‹’η»ζœεŠ‘ζΌζ΄ž
2009-06-11 00:00:00
nvd
nvd
CVE-2009-1955
2009-06-08 01:00:00
CVE-2016-6312
2017-07-17 13:18:06
nessus
nessus
SuSE9 Security Update : Apache 2 (YOU Patch Number 12613)
2010-05-04 00:00:00
Debian DSA-1812-1 : apr-util - denial of service
2009-06-08 00:00:00
Slackware 11.0 / 12.0 / 12.1 / 12.2 / current : apr-util (SSA:2009-167-02)
2009-06-17 00:00:00
cve
cve
CVE-2016-6312
2017-07-17 13:18:06
CVE-2009-1955
2009-06-08 01:00:00
ubuntucve
ubuntucve
CVE-2016-6312
2017-07-17 00:00:00
CVE-2009-1955
2009-06-08 00:00:00
slackware
slackware
apr-util
2009-06-16 17:40:37
httpd
2009-08-02 15:33:03
debiancve
debiancve
CVE-2009-1955
2009-06-08 01:00:00
CVE-2016-6312
2017-07-17 13:18:06
prion
prion
Design/Logic Flaw
2009-06-08 01:00:00
Code injection
2017-07-17 13:18:00
cvelist
cvelist
CVE-2009-1955
2009-06-06 18:00:00
CVE-2016-6312
2017-07-14 20:00:00
centos
centos
apr security update
2009-06-19 09:53:07
httpd, mod_ssl security update
2009-06-17 14:02:38
freebsd
freebsd
apr -- multiple vulnerabilities
2009-06-05 00:00:00
apache22 -- several vulnerabilities
2009-07-28 00:00:00
redhat
redhat
(RHSA-2009:1107) Moderate: apr-util security update
2009-06-16 00:00:00
(RHSA-2009:1108) Moderate: httpd security update
2009-06-16 00:00:00
gentoo
gentoo
APR Utility Library: Multiple vulnerabilities
2009-07-04 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: apr-util-1.2.12-7.fc9
2009-06-24 19:32:52
[SECURITY] Fedora 10 Update: apr-util-1.3.7-1.fc10
2009-06-24 19:40:30
[SECURITY] Fedora 11 Update: apr-util-1.3.7-1.fc11
2009-06-24 19:36:44
securityvulns
securityvulns
Apache apr-util webDav DoS
2009-06-05 00:00:00
Oracle / Sun / MySQL / PeopleSoft multiple applications security vulnerabilities
2013-05-04 00:00:00
oraclelinux
oraclelinux
httpd security update
2009-06-17 00:00:00
apr-util security update
2009-06-16 00:00:00
ubuntu
ubuntu
apr-util vulnerabilities
2009-06-10 00:00:00
Apache vulnerabilities
2009-06-11 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2013
2013-04-16 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.221 Low

EPSS

Percentile

96.5%

JSON
Related for HTTPD:5227799CC4172DBFA895A4F581F74C11
openvas52seebug1nvd2nessus31cve2ubuntucve2slackware2debiancve2prion2cvelist2centos2freebsd2redhat2gentoo1fedora3securityvulns2oraclelinux2ubuntu2altlinux3oracle1