CVE-2016-6312 in Subversioninformação

Sumário

de MITRE

The mod_dontdothat component of the mod_dav_svn Apache module in Subversion as packaged in Red Hat Enterprise Linux 5.11 does not properly detect recursion during entity expansion, which allows remote authenticated users with access to the webdav repository to cause a denial of service (memory consumption and httpd crash). NOTE: Exists as a regression to CVE-2009-1955.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

26/07/2016

Divulgação

17/07/2017

Moderação

aceite

Entrada

VDB-103563

CPE

pronto

CWE

CWE-400 (confirmado)

CVSS

6.5 (NVD)

EPSS

0.00515

KEV

não

Atividades

muito baixo

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6312
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6312
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6312/

◂ Voltar Visão Geral Próximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!