Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2013-4352
HistoryJul 20, 2014 - 12:00 a.m.

CVE-2013-4352

2014-07-2000:00:00
ubuntu.com
ubuntu.com
14

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.041 Low

EPSS

Percentile

92.1%

JSON

The cache_invalidate function in modules/cache/cache_storage.c in the
mod_cache module in the Apache HTTP Server 2.4.6, when a caching forward
proxy is enabled, allows remote HTTP servers to cause a denial of service
(NULL pointer dereference and daemon crash) via vectors that trigger a
missing hostname value.

Notes

Author Note
mdeslaur from commit: “This issue affected httpd versions 2.4.5 and 2.4.6 only.”

Related

checkpoint_advisories 1
veracode 2
httpd 1
nessus 7
prion 1
cve 1
f5 1
debiancve 1
openvas 5
oraclelinux 2
redhat 2
centos 1
ibm 1
checkpoint_advisories
checkpoint_advisories
Apache HTTP Server mod_cache Denial of Service (CVE-2013-4352)
2014-10-06 00:00:00
veracode
veracode
Denial Of Service
2019-01-15 08:57:20
Denial Of Service (DoS)
2019-05-02 05:03:43
httpd
httpd
Apache Httpd < 2.4.7 : mod_cache crash
2013-09-14 00:00:00
nessus
nessus
Apache 2.4.6 Remote DoS
2014-07-30 00:00:00
Oracle Solaris Third-Party Patch Update : apache (multiple_denial_of_service_dos5)
2015-01-19 00:00:00
CentOS 7 : httpd (CESA-2014:0921)
2014-07-24 00:00:00
prion
prion
Null pointer dereference
2014-07-20 11:12:00
cve
cve
CVE-2013-4352
2014-07-20 11:12:00
f5
f5
K28508558 : Apache mod_cache vulnerability CVE-2013-4352
2022-11-28 00:00:00
debiancve
debiancve
CVE-2013-4352
2014-07-20 11:12:00
openvas
openvas
Apache HTTP Server 'mod_cache' Denial of Service Vulnerability (May 2015)
2015-05-27 00:00:00
RedHat Update for httpd RHSA-2014:0921-01
2014-07-28 00:00:00
Oracle: Security Advisory (ELSA-2014-0921)
2015-10-06 00:00:00
oraclelinux
oraclelinux
httpd security update
2014-07-23 00:00:00
httpd24-httpd security and bug fix update
2016-02-04 00:00:00
redhat
redhat
(RHSA-2014:0921) Important: httpd security update
2014-07-23 00:00:00
(RHSA-2014:0922) Important: httpd24-httpd security update
2014-07-23 00:00:00
centos
centos
httpd, mod_ldap, mod_proxy_html, mod_session, mod_ssl security update
2014-07-23 15:36:55
ibm
ibm
Security Bulletin: Multiple vulnerabilities fixed in IBM HTTP Server (APAR PI22070)
2018-06-15 07:00:11

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.041 Low

EPSS

Percentile

92.1%

JSON
Related for UB:CVE-2013-4352
checkpoint_advisories1veracode2httpd1nessus7prion1cve1f51debiancve1openvas5oraclelinux2redhat2centos1ibm1