CVE-2013-1896 - Vulnerability Details

- httpd: mod_dav DoS (httpd child process crash) via a URI MERGE request with source URI not handled by mod_dav

Description

mod_dav.c in the Apache HTTP Server before 2.2.25 does not properly determine whether DAV is enabled for a URI, which allows remote attackers to cause a denial of service (segmentation fault) via a MERGE request in which the URI is configured for handling by the mod_dav_svn module, but a certain href attribute in XML data refers to a non-DAV URI.

Published: 2013-07-10

Score: 4.3 Medium

EPSS: 38.6% Moderate

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

affected

Version	Status	Constraints
`n/a`	affected	—

Configuration 1 [-]

OR	cpe:2.3:a:apache:http_server::::::::
	cpe:2.3:a:apache:http_server::::::::

Configuration 2 [-]

AND

OR	cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:::::::*
	cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.4.0:::::::*

OR	cpe:2.3:o:redhat:enterprise_linux:5.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*

Configuration 3 [-]

OR	cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:5.9:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:6.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:5.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:5.9:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*

Configuration 4 [-]

OR	cpe:2.3:o:canonical:ubuntu_linux:10.04::::-:::
	cpe:2.3:o:canonical:ubuntu_linux:12.04::::-:::
	cpe:2.3:o:canonical:ubuntu_linux:12.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:13.04:::::::*

Configuration 5 [-]

OR	cpe:2.3:o:opensuse:opensuse:11.4:::::::*
	cpe:2.3:o:opensuse:opensuse:12.2:::::::*
	cpe:2.3:o:opensuse:opensuse:12.3:::::::*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 5
httpd-0:2.2.3-82.el5_9	cpe:/o:redhat:enterprise_linux:5	RHSA-2013:1156	2013-08-13T00:00:00Z
Red Hat Enterprise Linux 6
httpd-0:2.2.15-29.el6_4	cpe:/o:redhat:enterprise_linux:6	RHSA-2013:1156	2013-08-13T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6.1
httpd	cpe:/a:redhat:jboss_enterprise_application_platform:6.1.1	RHSA-2013:1209	2013-09-04T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6 for RHEL 5
apache-commons-beanutils-0:1.8.3-12.redhat_3.2.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
apache-commons-daemon-jsvc-eap6-1:1.0.15-2.redhat_2.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
apache-cxf-0:2.6.8-8.redhat_7.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
apache-cxf-xjc-utils-0:2.6.0-2.redhat_4.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
hibernate4-0:4.2.0-11.SP1_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
hornetq-0:2.3.5-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
hornetq-native-0:2.3.5-1.Final_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
httpd-0:2.2.22-25.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
infinispan-0:5.2.7-1.Final_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
ironjacamar-0:1.0.19-1.Final_redhat_2.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jaxbintros-0:1.0.2-16.GA_redhat_6.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-aesh-0:0.33.7-2.redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-appclient-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossas-appclient-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossas-bundles-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-cli-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-client-all-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-clustering-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-cmp-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-configadmin-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-connector-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-console-0:1.5.6-2.Final_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-controller-client-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossas-core-0:7.2.1-6.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-deployment-repository-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-deployment-scanner-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossas-domain-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-domain-http-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-domain-management-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-ee-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-ee-deployment-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-ejb3-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-embedded-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-host-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-jacorb-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossas-javadocs-0:7.2.1-2.Final_redhat_10.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-jaxr-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-jaxrs-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-jdr-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-jmx-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-jpa-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-jsf-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-jsr77-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-logging-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-mail-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-management-client-content-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-messaging-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-modcluster-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossas-modules-eap-0:7.2.1-9.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-naming-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-network-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-osgi-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-osgi-configadmin-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-osgi-service-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-platform-mbean-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-pojo-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-process-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossas-product-eap-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-protocol-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-remoting-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-sar-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-security-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-server-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossas-standalone-0:7.2.1-6.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-system-jmx-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-threads-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-transactions-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-version-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-web-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-webservices-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossas-welcome-content-eap-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-weld-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-as-xts-0:7.2.1-5.Final_redhat_10.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-ejb-client-0:1.0.23-1.Final_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-hal-0:1.5.7-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-invocation-0:1.1.2-1.Final_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-jsp-api_2.2_spec-0:1.0.1-6.Final_redhat_2.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-logmanager-0:1.4.3-1.Final_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-marshalling-0:1.3.18-2.GA_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-modules-0:1.2.2-1.Final_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-remote-naming-0:1.0.7-1.Final_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-security-negotiation-0:2.2.5-2.Final_redhat_2.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jboss-stdio-0:1.0.2-1.GA_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossts-1:4.17.7-4.Final_redhat_4.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossweb-0:7.2.2-1.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossws-common-0:2.1.3-1.Final_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossws-cxf-0:4.1.4-7.Final_redhat_7.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jbossws-spi-0:2.1.3-1.Final_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jcip-annotations-eap6-0:1.0-4.redhat_4.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
jgroups-1:3.2.10-1.Final_redhat_2.2.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
log4j-jboss-logmanager-0:1.0.2-1.Final_redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
netty-0:3.6.6-3.Final_redhat_1.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
opensaml-0:2.5.1-2.redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
openws-0:1.4.2-10.redhat_4.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
picketbox-0:4.0.17-3.SP2_redhat_2.1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
picketlink-federation-0:2.1.6.3-2.Final_redhat_2.2.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
wss4j-0:1.6.10-1.redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
xml-security-0:1.5.5-1.redhat_1.ep6.el5	cpe:/a:redhat:jboss_enterprise_application_platform:6::el5	RHSA-2013:1207	2013-09-04T00:00:00Z
Red Hat JBoss Enterprise Application Platform 6 for RHEL 6
apache-commons-beanutils-0:1.8.3-12.redhat_3.2.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
apache-commons-daemon-jsvc-eap6-1:1.0.15-2.redhat_2.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
apache-cxf-0:2.6.8-8.redhat_7.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
apache-cxf-xjc-utils-0:2.6.0-2.redhat_4.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
hibernate4-0:4.2.0-7.SP1_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
hornetq-0:2.3.5-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
hornetq-native-0:2.3.5-1.Final_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
httpd-0:2.2.22-25.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
infinispan-0:5.2.7-1.Final_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
ironjacamar-0:1.0.19-1.Final_redhat_2.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jaxbintros-0:1.0.2-16.GA_redhat_6.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-aesh-0:0.33.7-2.redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-appclient-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossas-appclient-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossas-bundles-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-cli-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-client-all-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-clustering-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-cmp-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-configadmin-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-connector-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-console-0:1.5.6-2.Final_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-controller-client-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossas-core-0:7.2.1-6.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-deployment-repository-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-deployment-scanner-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossas-domain-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-domain-http-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-domain-management-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-ee-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-ee-deployment-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-ejb3-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-embedded-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-host-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-jacorb-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossas-javadocs-0:7.2.1-2.Final_redhat_10.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-jaxr-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-jaxrs-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-jdr-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-jmx-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-jpa-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-jsf-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-jsr77-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-logging-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-mail-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-management-client-content-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-messaging-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-modcluster-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossas-modules-eap-0:7.2.1-9.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-naming-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-network-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-osgi-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-osgi-configadmin-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-osgi-service-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-platform-mbean-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-pojo-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-process-controller-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossas-product-eap-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-protocol-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-remoting-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-sar-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-security-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-server-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossas-standalone-0:7.2.1-6.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-system-jmx-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-threads-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-transactions-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-version-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-web-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-webservices-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossas-welcome-content-eap-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-weld-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-as-xts-0:7.2.1-5.Final_redhat_10.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-ejb-client-0:1.0.23-1.Final_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-hal-0:1.5.7-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-invocation-0:1.1.2-1.Final_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-jsp-api_2.2_spec-0:1.0.1-6.Final_redhat_2.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-logmanager-0:1.4.3-1.Final_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-marshalling-0:1.3.18-1.GA_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-modules-0:1.2.2-1.Final_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-remote-naming-0:1.0.7-1.Final_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-security-negotiation-0:2.2.5-2.Final_redhat_2.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jboss-stdio-0:1.0.2-1.GA_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossts-1:4.17.7-4.Final_redhat_4.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossweb-0:7.2.2-1.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossws-common-0:2.1.3-1.Final_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossws-cxf-0:4.1.4-7.Final_redhat_7.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jbossws-spi-0:2.1.3-1.Final_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jcip-annotations-eap6-0:1.0-4.redhat_4.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
jgroups-1:3.2.10-1.Final_redhat_2.2.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
log4j-jboss-logmanager-0:1.0.2-1.Final_redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
netty-0:3.6.6-2.Final_redhat_1.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
opensaml-0:2.5.1-2.redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
openws-0:1.4.2-10.redhat_4.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
picketbox-0:4.0.17-3.SP2_redhat_2.1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
picketlink-federation-0:2.1.6.3-2.Final_redhat_2.2.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
wss4j-0:1.6.10-1.redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
xml-security-0:1.5.5-1.redhat_1.ep6.el6	cpe:/a:redhat:jboss_enterprise_application_platform:6::el6	RHSA-2013:1208	2013-09-04T00:00:00Z
Red Hat JBoss Enterprise Web Server 2 for RHEL 5
httpd-0:2.2.22-25.ep6.el5	cpe:/a:redhat:jboss_enterprise_web_server:2::el5	RHSA-2013:1133	2013-08-05T00:00:00Z
Red Hat JBoss Enterprise Web Server 2 for RHEL 6
httpd-0:2.2.22-25.ep6.el6	cpe:/a:redhat:jboss_enterprise_web_server:2::el6	RHSA-2013:1133	2013-08-05T00:00:00Z
Red Hat JBoss Web Server 2.0
httpd	cpe:/a:redhat:jboss_enterprise_web_server:2.0.1	RHSA-2013:1134	2013-08-05T00:00:00Z

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Ubuntu USN	USN-1903-1	Apache HTTP Server vulnerabilities

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.38555.

Key SSVC decision points have not yet been added.

References

Link	Providers
http://lists.opensuse.org/opensuse-updates/2013-08/msg00026.html
http://lists.opensuse.org/opensuse-updates/2013-08/msg00029.html
http://lists.opensuse.org/opensuse-updates/2013-08/msg00030.html
http://rhn.redhat.com/errata/RHSA-2013-1156.html
http://rhn.redhat.com/errata/RHSA-2013-1207.html
http://rhn.redhat.com/errata/RHSA-2013-1208.html
http://rhn.redhat.com/errata/RHSA-2013-1209.html
http://secunia.com/advisories/55032
http://support.apple.com/kb/HT6150
http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/dav/main/mod_dav.c?r1=1482522&r2=1485668&diff_format=h
http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/dav/main/mod_dav.c?view=log
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1896
http://www-01.ibm.com/support/docview.wss?uid=swg21644047
http://www.apache.org/dist/httpd/Announcement2.2.html
http://www.securityfocus.com/bid/61129
http://www.ubuntu.com/usn/USN-1903-1
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c03922406-1%257CdocLocale%253D%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
https://httpd.apache.org/security/vulnerabilities_24.html
https://lists.apache.org/thread.html/56c2e7cc9deb1c12a843d0dc251ea7fd3e7e80293cde02fcd65286ba%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/84a3714f0878781f6ed84473d1a503d2cc382277e100450209231830%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r05b5357d1f6bd106f41541ee7d87aafe3f5ea4dc3e9bde5ce09baff8%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r9821b0a32a1d0a1b4947abb6f3630053fcbb2ec905d9a32c2bd4d4ee%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r9b4b963760a3cb5a4a70c902f325c6c0337fe51d5b8570416f8f8729%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/rcc44594d4d6579b90deccd4536b5d31f099ef563df39b094be286b9e%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/rd18c3c43602e66f9cdcf09f1de233804975b9572b0456cc582390b6f%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/re3d27b6250aa8548b8845d314bb8a350b3df326cacbbfdfe4d455234%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E
https://nvd.nist.gov/vuln/detail/CVE-2013-1896
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18835
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19747
https://www.cve.org/CVERecord?id=CVE-2013-1896

History

No history.

Subscriptions

Apache Http Server

Canonical Ubuntu Linux

Opensuse Opensuse

Redhat Enterprise Linux Enterprise Linux Desktop Enterprise Linux Eus Enterprise Linux Server Enterprise Linux Server Aus Enterprise Linux Workstation Jboss Enterprise Application Platform Jboss Enterprise Web Server

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2013-07-10T20:00:00.000Z

Updated: 2024-08-06T15:20:37.089Z

Reserved: 2013-02-19T00:00:00.000Z

Link: CVE-2013-1896

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2013-07-10T20:55:01.023

Modified: 2025-04-11T00:51:21.963

Link: CVE-2013-1896

Redhat

Severity : Moderate

Publid Date: 2013-05-23T00:00:00Z

Links: CVE-2013-1896 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

NVD-CWE-noinfo

Tracking

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object