CVE-2010-1452

Apache HTTP Server 2.0.35-2.0.63 - Denial of Service via Pathless Request

Title source: llm
STIX 2.1

Description

The (1) mod_cache and (2) mod_dav modules in the Apache HTTP Server 2.2.x before 2.2.16 allow remote attackers to cause a denial of service (process crash) via a request that lacks a path.

References (42)

Core 42
Core References
Broken Link, Third Party Advisory vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12341
Broken Link, Third Party Advisory vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11683
Broken Link vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0291
Broken Link vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/3064
Mailing List vendor-advisory x_refsource_apple
http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html
Broken Link vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2010-0659.html
Patch, Vendor Advisory mailing-list x_refsource_mlist
http://marc.info/?l=apache-announce&m=128009718610929&w=2
Mailing List, Third Party Advisory vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=133355494609819&w=2
Third Party Advisory vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=129190899612998&w=2
Third Party Advisory x_refsource_confirm
http://httpd.apache.org/security/vulnerabilities_22.html
Broken Link, Third Party Advisory x_refsource_confirm
http://blogs.sun.com/security/entry/cve_2010_1452_mod_dav
Broken Link vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-0897.html
Broken Link vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-0896.html
Broken Link, Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42367
Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_slackware
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.467395
Third Party Advisory, VDB Entry vendor-advisory x_refsource_ubuntu
http://ubuntu.com/usn/usn-1021-1
Broken Link vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/2218
Third Party Advisory, VDB Entry x_refsource_confirm
http://support.apple.com/kb/HT4581

Scores

EPSS 0.2187
EPSS Percentile 97.4%

Details

Status published
Products (1)
apache/http_server 2.0.35 - 2.0.64
Published Jul 28, 2010
Tracked Since Feb 18, 2026