CVE-2011-1783
published 2011-06-06CVE-2011-1783: The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit…
medium4.3CVSS 3.1
AVNACMAuNCNINAP
The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit option is enabled, allows remote attackers to cause a denial of service (infinite loop and memory consumption) in opportunistic circumstances by requesting data.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | subversion | — | — |
| apache | subversion | >= 0 < 1.6.17dfsg-1 | 1.6.17dfsg-1 |
| apache | subversion | >= 0 < 1.6.17dfsg-1 | 1.6.17dfsg-1 |
| apache | subversion | >= 0 < 1.6.17dfsg-1 | 1.6.17dfsg-1 |
| apache | subversion | >= 0 < 1.6.17dfsg-1 | 1.6.17dfsg-1 |
| apache | subversion | 1.5.0 – 1.5.8 | — |
| apache | subversion | >= 1.6.0 < 1.6.17 | 1.6.17 |
| apple | mac_os_x | < 10.7.3 | 10.7.3 |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | subversion | < subversion 1.6.17dfsg-1 (bookworm) | subversion 1.6.17dfsg-1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
CVSS provenance
nvd4.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM