Lucene search

K

Kaspersky LabKLA10071

HistoryAug 07, 2014 - 12:00 a.m.

KLA10071 DoS vulnerability in Apache Subversion

2014-08-0700:00:00

Kaspersky Lab

threats.kaspersky.com

27

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.139 Low

EPSS

Percentile

95.6%

Detect date:

08/07/2014

Severity:

Warning

Description:

An unspecified vulnerability was found in Apache Subversion. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to mod_dav_svn via a specially designed OPTIONS request.

Affected products:

Apache Subversion versions 1.3.0 to 1.7.14 and 1.8.0 to 1.8.5

Solution:

Update to latest version

Original advisories:

Apache bulletin

Impacts:

DoS

Related products:

Apache Subversion

CVE-IDS:

CVE-2014-00324.3Warning

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0032

statistics.securelist.com/vulnerability-scan/month

subversion.apache.org/security/CVE-2014-0032-advisory.txt

threats.kaspersky.com/en/product/Apache-Subversion/

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.139 Low

EPSS

Percentile

95.6%

Related for KLA10071

nessus18 prion1 fedora2 openvas17 mageia2 cve1 debiancve1 veracode1 freebsd1 ubuntucve1 amazon1 oraclelinux1 centos1 securityvulns4 slackware1 redhat1 ubuntu1 osv1 debian1 gentoo1