CVE-2013-1847: The mod_dav_svn Apache HTTPD server module in Subversion 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service…

medium5CVSS 3.1

AVNACLAuNCNINAP

EXPLOIT

The mod_dav_svn Apache HTTPD server module in Subversion 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an anonymous LOCK for a URL that does not exist.

Affected

36 ranges· showing 25

Vendor	Product	Version range	Fixed in
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—
apache	subversion	—	—

CVSS provenance

nvd5.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P

osv5.0MEDIUM