Lucene search
Apache Team FoundationHTTPD:85C24937CF85C2E1DBF78F9954817A28HistoryMar 03, 2010 - 12:00 a.m.
Apache Httpd < 2.2.17 : apr_bridage_split_line DoS
2010-03-0300:00:00
Apache Team Foundation
httpd.apache.org
12
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.425 Medium
EPSS
Percentile
97.3%
A flaw was found in the apr_brigade_split_line() function of the bundled APR-util library, used to process non-SSL requests. A remote attacker could send requests, carefully crafting the timing of individual bytes, which would slowly consume memory, potentially leading to a denial of service.
Related
openvas
openvas
Mandriva Update for apr-util MDVSA-2010:192 (apr-util)
2010-10-04 00:00:00
Apache APR-util 'buckets/apr_brigade.c' Denial Of Service Vulnerability
2010-10-07 00:00:00
CentOS Update for apr-util CESA-2010:0950 centos4 i386
2011-01-31 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: apr-util-1.3.10-1.fc13
2010-10-28 05:47:25
[SECURITY] Fedora 12 Update: apr-util-1.3.10-1.fc12
2010-10-28 05:58:28
[SECURITY] Fedora 14 Update: apr-util-1.3.10-1.fc14
2010-11-10 01:19:10
nessus
nessus
Fedora 14 : apr-util-1.3.10-1.fc14 (2010-16178)
2010-11-10 00:00:00
F5 Networks BIG-IP : Apache vulnerability (SOL15902)
2015-09-16 00:00:00
Scientific Linux Security Update : apr-util on SL4.x, SL5.x i386/x86_64
2012-08-01 00:00:00
redhat
redhat
(RHSA-2010:0950) Moderate: apr-util security update
2010-12-07 00:00:00
(RHSA-2011:0897) Moderate: JBoss Enterprise Web Server 1.0.2 update
2011-06-22 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:51:33
f5
f5
K15902 : Apache vulnerability CVE-2010-1623
2015-09-16 00:00:00
SOL15902 - Apache vulnerability CVE-2010-1623
2014-12-11 00:00:00
debian
debian
[SECURITY] [DSA-2117-1] New apr-util packages fix denial of service
2010-10-04 21:35:18
[SECURITY] [DSA-2117-1] New apr-util packages fix denial of service
2010-10-04 21:35:18
slackware
slackware
[slackware-security] apr-util
2011-02-11 01:16:50
[slackware-security] httpd
2011-02-11 01:17:26
centos
centos
apr security update
2011-01-27 08:46:39
oraclelinux
oraclelinux
apr-util security update
2010-12-07 00:00:00
httpd
httpd
Apache Httpd < 2.0.64 : apr_bridage_split_line DoS
2010-03-03 00:00:00
ubuntucve
ubuntucve
CVE-2010-1623
2010-10-04 00:00:00
CVE-2007-6750
2011-12-27 00:00:00
prion
prion
Design/Logic Flaw
2010-10-04 21:00:00
cve
cve
CVE-2010-1623
2010-10-04 21:00:00
ubuntu
ubuntu
APR-util vulnerability
2010-11-25 00:00:00
Apache vulnerabilities
2010-11-25 00:00:00
debiancve
debiancve
CVE-2010-1623
2010-10-04 21:00:00
freebsd
freebsd
apr -- multiple vunerabilities
2010-10-02 00:00:00
gentoo
gentoo
Apache Portable Runtime, APR Utility Library: Denial of service
2014-05-18 00:00:00
suse
suse
Security update for apache2 (important)
2011-11-09 19:08:34
kaspersky
kaspersky
KLA10066 Multiple vulnerabilities in Apache httpd
2010-10-19 00:00:00
hackerone
hackerone
U.S. Dept Of Defense: Out-of-date Version (Apache)
2016-11-24 15:09:27
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.425 Medium
EPSS
Percentile
97.3%
Related for HTTPD:85C24937CF85C2E1DBF78F9954817A28