Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
httpdApache Team FoundationHTTPD:C7877AFCB6DEB5CFB770011B4B04435D
HistoryMay 04, 2010 - 12:00 a.m.

Apache Httpd < 2.0.64 : mod_cache and mod_dav DoS

2010-05-0400:00:00
Apache Team Foundation
httpd.apache.org
11

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.23

Percentile

96.6%

JSON

A flaw was found in the handling of requests by mod_cache (2.2) and mod_dav (2.0 and 2.2). A malicious remote attacker could send a carefully crafted request and cause a httpd child process to crash. This crash would only be a denial of service if using the worker MPM. This issue is further mitigated as mod_dav is only affected by requests that are most likely to be authenticated, and mod_cache is only affected if the uncommon “CacheIgnoreURLSessionIdentifiers” directive, introduced in version 2.2.14, is used.

Related

slackware 1
nessus 24
openvas 28
httpd 1
ubuntucve 1
nvd 1
prion 1
freebsd 1
veracode 1
fedora 1
cve 1
debiancve 1
cvelist 1
debian 4
oraclelinux 1
suse 2
ubuntu 1
centos 1
redhat 2
osv 1
securityvulns 3
f5 2
altlinux 3
kaspersky 1
gentoo 1
hackerone 1
slackware
slackware
[slackware-security] httpd
2010-08-28 16:52:27
nessus
nessus
FreeBSD : apache -- Remote DoS bug in mod_cache and mod_dav (28a7310f-9855-11df-8d36-001aa0166822)
2010-07-26 00:00:00
Fedora 13 : httpd-2.2.16-1.fc13 (2010-12478)
2010-08-14 00:00:00
Mandriva Linux Security Advisory : apache (MDVSA-2010:152)
2010-08-17 00:00:00
openvas
openvas
Fedora Update for httpd FEDORA-2010-12478
2010-08-16 00:00:00
Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
2010-07-27 00:00:00
Fedora Update for httpd FEDORA-2010-12478
2010-08-16 00:00:00
httpd
httpd
Apache Httpd < 2.2.16 : mod_cache and mod_dav DoS
2010-05-04 00:00:00
ubuntucve
ubuntucve
CVE-2010-1452
2010-07-28 00:00:00
nvd
nvd
CVE-2010-1452
2010-07-28 20:00:01
prion
prion
Path traversal
2010-07-28 20:00:00
freebsd
freebsd
apache -- Remote DoS bug in mod_cache and mod_dav
2010-07-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:47:09
fedora
fedora
[SECURITY] Fedora 13 Update: httpd-2.2.16-1.fc13
2010-08-13 21:20:54
cve
cve
CVE-2010-1452
2010-07-28 20:00:01
debiancve
debiancve
CVE-2010-1452
2010-07-28 20:00:01
cvelist
cvelist
CVE-2010-1452
2010-07-28 19:32:00
debian
debian
[SECURITY] [DSA 2298-2] apache2 regression fix
2011-09-05 19:20:44
[SECURITY] [DSA 2298-2] apache2 regression fix
2011-09-05 19:20:44
[SECURITY] [DSA 2298-1] apache2 security update
2011-08-29 21:16:25
oraclelinux
oraclelinux
httpd security and bug fix update
2010-08-30 00:00:00
suse
suse
Security update for Apache 2 (important)
2011-11-04 09:08:32
Security update for Apache (important)
2011-09-06 07:08:21
ubuntu
ubuntu
Apache vulnerabilities
2010-11-25 00:00:00
centos
centos
httpd, mod_ssl security update
2010-08-31 21:00:21
redhat
redhat
(RHSA-2010:0659) Moderate: httpd security and bug fix update
2010-08-30 00:00:00
(RHSA-2011:0897) Moderate: JBoss Enterprise Web Server 1.0.2 update
2011-06-22 00:00:00
osv
osv
apache2 - denial of service
2011-09-05 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:153 ] apache
2010-08-19 00:00:00
About the security content of Mac OS X v10.6.7 and Security Update 2011-001
2011-03-23 00:00:00
Apple Mac OS X multiple security vulnerabilities
2011-03-23 00:00:00
f5
f5
K15899 : Multiple Apache vulnerabilities CVE-2012-4558, CVE-2012-0883, CVE-2011-3348, and CVE-2010-1452
2014-12-08 00:00:00
SOL15899 - Multiple Apache vulnerabilities CVE-2012-4558, CVE-2012-0883, CVE-2011-3348, and CVE-2010-1452
2014-12-08 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package apache2 version 2.2.16-alt1
2010-09-16 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.16-alt1
2010-09-16 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.16-alt1
2010-09-16 00:00:00
kaspersky
kaspersky
KLA10066 Multiple vulnerabilities in Apache httpd
2010-10-19 00:00:00
gentoo
gentoo
Apache HTTP Server: Multiple vulnerabilities
2012-06-24 00:00:00
hackerone
hackerone
U.S. Dept Of Defense: Out-of-date Version (Apache)
2016-11-24 15:09:27

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.23

Percentile

96.6%

JSON
Related for HTTPD:C7877AFCB6DEB5CFB770011B4B04435D
slackware1nessus24openvas28httpd1ubuntucve1nvd1prion1freebsd1veracode1fedora1cve1debiancve1cvelist1debian4oraclelinux1suse2ubuntu1centos1redhat2osv1securityvulns3f52altlinux3kaspersky1gentoo1hackerone1