The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Http_server | Apache | 2.0.35 (including) | 2.0.51 (excluding) |
Red Hat Enterprise Linux 3 | RedHat | httpd-0:2.0.46-40.ent | * |
Apache2 | Ubuntu | dapper | * |
Apache2 | Ubuntu | devel | * |
Apache2 | Ubuntu | edgy | * |
Apache2 | Ubuntu | feisty | * |
Libapache-mod-dav | Ubuntu | dapper | * |
Libapache-mod-dav | Ubuntu | edgy | * |
Libapache-mod-dav | Ubuntu | feisty | * |