6 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-6312
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The moddontdothat component of the moddavsvn Apache module in Subversion as packaged in Red Hat Enterprise Linux 5.11 does not properly detect recursion during...
RHEL 5 : apr-util (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - apr-util, httpd: Billion laughs attack regression CVE-2016-6312 Note that Nessus has not tested for this issue but...
CVE-2016-6312
The moddontdothat component of the moddavsvn Apache module in Subversion as packaged in Red Hat Enterprise Linux 5.11 does not properly detect recursion during entity expansion, which allows remote authenticated users with access to the webdav repository to cause a denial of service memory...
CVE-2016-6312
CVE-2016-6312 is a regression of CVE-2009-1955 describing a DoS in Apache httpd/mod_dav_svn caused by the mod_dontdothat component failing to detect recursive XML entity expansion. Connected sources confirm the underlying issue is in APR-util's XML entity handling (as part of APR-util) used by Ap...
CVE-2016-6312
The moddontdothat component of the moddavsvn Apache module in Subversion as packaged in Red Hat Enterprise Linux 5.11 does not properly detect recursion during entity expansion, which allows remote authenticated users with access to the webdav repository to cause a denial of service memory...
CVE-2016-6312
A denial of service vulnerability was found in subversion. The moddontdothat component of the moddavsvn Apache module did not properly protect against exponential XML entity expansion attacks. An attacker with credentials to the webdav repository could send a crafted message that would result in...