CVE Vulnerabilities

CVE-2013-1847

Published: May 02, 2013 | Modified: Sep 19, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

The mod_dav_svn Apache HTTPD server module in Subversion 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an anonymous LOCK for a URL that does not exist.

Affected Software

Name Vendor Start Version End Version
Subversion Apache 1.6.10 1.6.10
Subversion Apache 1.6.19 1.6.19
Subversion Apache 1.6.20 1.6.20
Subversion Apache 1.6.2 1.6.2
Subversion Apache 1.6.18 1.6.18
Subversion Apache 1.6.16 1.6.16
Subversion Apache 1.6.5 1.6.5
Subversion Apache 1.6.3 1.6.3
Subversion Apache 1.6.8 1.6.8
Subversion Apache 1.6.13 1.6.13
Subversion Apache 1.6.0 1.6.0
Subversion Apache 1.6.7 1.6.7
Subversion Apache 1.6.12 1.6.12
Subversion Apache 1.6.1 1.6.1
Subversion Apache 1.6.4 1.6.4
Subversion Apache 1.6.15 1.6.15
Subversion Apache 1.6.11 1.6.11
Subversion Apache 1.6.14 1.6.14
Subversion Apache 1.6.17 1.6.17
Subversion Apache 1.6.6 1.6.6
Subversion Apache 1.6.9 1.6.9

References