FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2010-1452

This CVE name corresponds to:

Entered Topic
2010-07-26 apache -- Remote DoS bug in mod_cache and mod_dav

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2010-1452
Phase Assigned(20100415)

Description

The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service (process crash) via a request that lacks a path.

References

Source Reference
MLIST [apache-announce] 20100725 [ANNOUNCEMENT] Apache HTTP Server 2.2.16 Released
CONFIRM http://httpd.apache.org/security/vulnerabilities_22.html
CONFIRM https://issues.apache.org/bugzilla/show_bug.cgi?id=49246
CONFIRM http://blogs.sun.com/security/entry/cve_2010_1452_mod_dav
CONFIRM http://support.apple.com/kb/HT4581
APPLE APPLE-SA-2011-03-21-1
HP HPSBUX02612
HP SSRT100345
REDHAT RHSA-2010:0659
REDHAT RHSA-2011:0896
REDHAT RHSA-2011:0897
SLACKWARE SSA:2010-240-02
SUSE SUSE-SU-2011:1000
SUSE SUSE-SU-2011:1216
UBUNTU USN-1021-1
OVAL oval:org.mitre.oval:def:11683
OVAL oval:org.mitre.oval:def:12341
SECUNIA 42367
VUPEN ADV-2010-2218
VUPEN ADV-2010-3064
VUPEN ADV-2011-0291