Back to KEVs

CVE-2011-1752

The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.17, allows remote attackers to cause a denial of...

Basic Information

CVE State
PUBLISHED
Reserved Date
April 19, 2011
Published Date
June 06, 2011
Last Updated
August 06, 2024
Vendor
Apache Software Foundation
Product
Subversion
Description
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.17, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request for a baselined WebDAV resource, as exploited in the wild in May 2011.
Tags
apache

CVSS Scores

CVSS v2.0

5.0

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploit Status

Exploited in the Wild
Yes (2011-06-06 19:00:00 UTC) Source

References

http://www.debian.org/security/2011/dsa-2251 http://www.ubuntu.com/usn/USN-1144-1 http://support.apple.com/kb/HT5130 http://www.mandriva.com/security/advisories?name=MDVSA-2011:106 http://secunia.com/advisories/44849 http://www.redhat.com/support/errata/RHSA-2011-0862.html http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062211.html http://secunia.com/advisories/44888 http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html http://secunia.com/advisories/45162 http://secunia.com/advisories/44681 http://subversion.apache.org/security/CVE-2011-1752-advisory.txt http://secunia.com/advisories/44879 http://www.securityfocus.com/bid/48091 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061913.html https://bugzilla.redhat.com/show_bug.cgi?id=709111 http://secunia.com/advisories/44633 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18922 http://www.securitytracker.com/id?1025617 http://svn.apache.org/repos/asf/subversion/tags/1.6.17/CHANGES http://www.redhat.com/support/errata/RHSA-2011-0861.html

Known Exploited Vulnerability Information

Source Added Date
CVE 2011-06-06 19:00:00 UTC

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel