Lucene search
K

8 matches found

Amazon
Amazon
added 2015/08/24 12:0 a.m.45 views

Medium: subversion, mod_dav_svn

Issue Overview: The moddavsvn server in Subversion 1.8.0 through 1.8.11 allows remote attackers to cause a denial of service memory consumption via a large number of REPORT requests, which trigger the traversal of FSFS repository nodes. CVE-2015-0202 An assertion failure flaw was found in the way...

7.8CVSS8.5AI score0.12841EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/08/21 12:0 a.m.41 views

Ubuntu 14.04 LTS : Subversion vulnerabilities (USN-2721-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2721-1 advisory. It was discovered that the Subversion moddavsvn module incorrectly handled REPORT requests for a resource that does not exist. A remote attacker could us...

7.8CVSS7.2AI score0.12841EPSS
Exploits0References8
Ubuntu
Ubuntu
added 2015/08/20 5:47 p.m.68 views

USN-2721-1: Subversion vulnerabilities

It was discovered that the Subversion moddavsvn module incorrectly handled REPORT requests for a resource that does not exist. A remote attacker could use this issue to cause the server to crash, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS...

7.8CVSS7.3AI score0.12841EPSS
Exploits0
OSV
OSV
added 2015/08/20 5:47 p.m.2 views

USN-2721-1 subversion vulnerabilities

It was discovered that the Subversion moddavsvn module incorrectly handled REPORT requests for a resource that does not exist. A remote attacker could use this issue to cause the server to crash, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS...

7.8CVSS7AI score0.12841EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2015/05/06 12:0 a.m.25 views

Apache Subversion 1.8.x DoS Vulnerability (May 2015)

Apache Subversion is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.8CVSS8AI score0.08026EPSS
Exploits0References1
Mageia
Mageia
added 2015/05/03 12:19 a.m.41 views

Updated subversion packages fix security vulnerabilities

Updated subversion packages fix security vulnerabilities: Subversion HTTP servers with FSFS repositories are vulnerable to a remotely triggerable excessive memory use with certain REPORT requests CVE-2015-0202. Subversion moddavsvn and svnserve are vulnerable to a remotely triggerable assertion D...

7.8CVSS6.8AI score0.12841EPSS
Exploits0References4
NVD
NVD
added 2015/04/08 6:59 p.m.20 views

CVE-2015-0202

The moddavsvn server in Subversion 1.8.0 through 1.8.11 allows remote attackers to cause a denial of service memory consumption via a large number of REPORT requests, which trigger the traversal of FSFS repository nodes...

7.8CVSS6.3AI score0.08026EPSS
Exploits0References7
CVE
CVE
added 2015/04/08 6:0 p.m.76 views

CVE-2015-0202

Summary: Subversion’s mod_dav_svn server (1.8.0–1.8.11) is vulnerable to a denial-of-service via a flood of REPORT requests that trigger traversal of FSFS repository nodes (CVE-2015-0202). Additional related flaws include an assertion DoS on certain requests with dynamic revision numbers (CVE-201...

7.8CVSS7.9AI score0.08026EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder