Lucene search
K

385 matches found

OSV
OSV
added 2016/04/14 2:59 p.m.3 views

CVE-2015-5343

Integer overflow in util.c in moddavsvn in Apache Subversion 1.7.x, 1.8.x before 1.8.15, and 1.9.x before 1.9.3 allows remote authenticated users to cause a denial of service subversion server crash or memory consumption and possibly execute arbitrary code via a skel-encoded request body, which...

7.6CVSS8AI score0.30216EPSS
Exploits0References4
Prion
Prion
added 2016/04/14 2:59 p.m.17 views

Integer overflow

Integer overflow in util.c in moddavsvn in Apache Subversion 1.7.x, 1.8.x before 1.8.15, and 1.9.x before 1.9.3 allows remote authenticated users to cause a denial of service subversion server crash or memory consumption and possibly execute arbitrary code via a skel-encoded request body, which...

8CVSS8.2AI score0.30216EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2016/04/14 2:0 p.m.24 views

CVE-2015-5343

Integer overflow in util.c in moddavsvn in Apache Subversion 1.7.x, 1.8.x before 1.8.15, and 1.9.x before 1.9.3 allows remote authenticated users to cause a denial of service subversion server crash or memory consumption and possibly execute arbitrary code via a skel-encoded request body, which...

8AI score0.30216EPSS
Exploits0References4
CVE
CVE
added 2016/04/14 2:0 p.m.87 views

CVE-2015-5343

CVE-2015-5343 affects Apache Subversion (mod_dav_svn). An integer overflow in util.c can trigger an out-of-bounds read and heap overflow via a skel-encoded request body, allowing remote authenticated users to cause a DoS or possibly execute arbitrary code. Affected versions: Subversion 1.7.x; 1.8...

8CVSS7.9AI score0.30216EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2016/04/14 2:0 p.m.66 views

CVE-2015-5343

Integer overflow in util.c in moddavsvn in Apache Subversion 1.7.x, 1.8.x before 1.8.15, and 1.9.x before 1.9.3 allows remote authenticated users to cause a denial of service subversion server crash or memory consumption and possibly execute arbitrary code via a skel-encoded request body, which...

8CVSS8.2AI score0.30216EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/03/24 12:0 a.m.29 views

Apple Xcode < 7.3 Multiple Vulnerabilities (Mac OS X)

The version of Apple Xcode installed on the remote Mac OS X host is prior to 7.3. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in Apache Subversion in modauthzsvn due to a failure to properly restrict anonymous access. An unauthenticated, remote attacker can exploit...

7.8CVSS7.6AI score0.10607EPSS
Exploits0References5
Check Point Advisories
Check Point Advisories
added 2016/03/15 12:0 a.m.4 views

Apache Subversion mod_dav_svn Integer Overflow (CVE-2015-5343)

Heap overflow and out-of-bounds read vulnerabilities have been reported in the moddavsvn of Apache Subversion web servers. These vulnerabilities are caused by an integer overflow when parsing certain encoded requests. A remote, authenticated attacker could exploit this vulnerability by sending...

8CVSS4.3AI score0.30216EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.39 views

Fedora 22 : subversion-1.8.15-1.fc22 (2015-6efa349a85)

This update includes the latest stable release of Apache Subversion 1.8, version 1.8.15. This update fixes two security issues: CVE-2015-3184: Subversion's modauthzsvn does not properly restrict anonymous access in some mixed anonymous/authenticated environments when using Apache httpd 2.4...

9CVSS7.1AI score0.57037EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.36 views

Fedora 23 : subversion-1.9.3-1.fc23 (2015-afdb0e8aaa)

This update includes the latest stable release of Apache Subversion, version 1.9.3. User-visible changes: Client-side bugfixes: svn: fix possible crash in auth credentials cache cleanup: avoid unneeded memory growth during pristine cleanup diff: fix crash when repository is on server root fix...

9CVSS7.7AI score0.57037EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2016/02/09 12:0 a.m.45 views

Apache Subversion Insecure Authentication Weakness Vulnerability

Apache Subversion is prone to an authentication weakness vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

4CVSS8.6AI score0.07495EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/02/08 12:0 a.m.25 views

Apache Subversion 1.7.x, 1.8.x DoS Vulnerability

Apache Subversion is prone to a denial of service DoS vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

5CVSS6.2AI score0.09692EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/02/08 12:0 a.m.30 views

Apache Subversion Certificate Validation Information Disclosure Vulnerability

Apache Subversion is prone to certificate validation information disclosure vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later...

4CVSS7.5AI score0.05581EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/02/08 12:0 a.m.26 views

Apache Subversion DoS Vulnerability (Feb 2016)

Apache Subversion is prone to a denial of service DoS vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

2.6CVSS6.2AI score0.07858EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/02/08 12:0 a.m.38 views

Apache Subversion < 1.7.19, 1.8.x < 1.8.11 DoS Vulnerability (Feb 2016)

Apache Subversion is prone to a denial of service DoS vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

5CVSS6.1AI score0.1067EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/02/05 12:0 a.m.31 views

Apache Subversion < 1.8.15 / 1.9.x < 1.9.3 Buffer Overflow

Binary data 9068.prm...

8CVSS8AI score0.30216EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2016/02/05 12:0 a.m.14 views

Apache Subversion 1.9.x < 1.9.3 Buffer Overflow

Binary data 9069.prm...

9CVSS7.3AI score0.57037EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/02/05 12:0 a.m.24 views

Apache Subversion 1.8.x < 1.8.16 / 1.9.x < 1.9.4 Multiple Vulnerabilities

Binary data 9395.prm...

6.8CVSS7.1AI score0.19628EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2016/01/14 12:0 a.m.46 views

KLA10792 Denial of service vulnerability in Apache Subversion

An integer overflow was found in Apache Subversion. By exploiting this vulnerability malicious authenticated users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed request. Technical details This vulnerability ca...

9CVSS8.3AI score0.57037EPSS
Exploits0References3
OSV
OSV
added 2016/01/08 7:59 p.m.5 views

CVE-2015-5259

Integer overflow in the readstring function in libsvnrasvn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read...

8.6CVSS9AI score0.57037EPSS
Exploits0References4
NVD
NVD
added 2016/01/08 7:59 p.m.16 views

CVE-2015-5259

Integer overflow in the readstring function in libsvnrasvn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read...

9CVSS9AI score0.57037EPSS
Exploits0References4
Rows per page
Query Builder