CVE Reference: CVE-2010-1452

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-1452

Description:
The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service (process crash) via a request that lacks a path.

CVE Status:
Candidate

References:

UBUNTU
  http://ubuntu.com/usn/usn-1021-1

SUSE
  http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html
  http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html

SLACKWARE
  http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.467395

SAID
  Secunia Advisory: SA42367

REDHAT
  http://www.redhat.com/support/errata/RHSA-2011-0897.html
  http://www.redhat.com/support/errata/RHSA-2010-0659.html
  http://www.redhat.com/support/errata/RHSA-2011-0896.html

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11683
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:12341

MLIST
  http://marc.info/?l=apache-announce&m=128009718610929&w=2

HP
  http://marc.info/?l=bugtraq&m=129190899612998&w=2

CONFIRM
  http://blogs.sun.com/security/entry/cve_2010_1452_mod_dav
  http://support.apple.com/kb/HT4581
  http://httpd.apache.org/security/vulnerabilities_22.html

APPLE
  http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html


Return to the previous page.