CVE-2010-1452Apache Http Server vulnerability

9 documents8 sources
Severity
5.0MEDIUMNVD
EPSS
13.9%
top 5.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apache Http Server
Timeline
PublishedJul 28
Latest updateMay 2

Description

The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service (process crash) via a request that lacks a path.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDapache/http_server2.0.352.0.64+1

Patches

Patch: marc.infoPatch: marc.info

🔴Vulnerability Details

3
GHSA
GHSA-gmw3-8mp2-pvvf: The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 22022-05-02
CVEList
CVE-2010-1452: The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 22010-07-28
OSV
CVE-2010-1452: The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 22010-07-28

📋Vendor Advisories

3
Ubuntu
Apache vulnerabilities2010-11-25
Red Hat
mod_dav: DoS (httpd child process crash) by parsing URI structure with missing path segments2010-07-21
Debian
CVE-2010-1452: apache2 - The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 2.2.x before...2010

💬Community

2
Bugzilla
CVE-2010-1452 httpd mod_cache, mod_dav: DoS (httpd child process crash) by parsing URI structure with missing path segments2010-07-26
Bugzilla
CVE-2010-1452 httpd mod_cache, mod_dav: DoS (httpd child process crash) by parsing URI structure with missing path segments [fedora-all]2010-07-26
CVE-2010-1452 — Apache Http Server vulnerability | cvebase