Wind River Support Network

HomeDefectsLIN6-7110

Fixed

LIN6-7110 : Security Advisory - apache subversion - CVE-2013-4505

Created: Apr 14, 2014 Updated: Dec 3, 2018

Resolved Date: Apr 14, 2014

Previous ID: LIN5-18507

Found In Version: 6.0

Fix Version: 6.0.0.6

Severity: Low

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

The is_this_legal function in mod_dontdothat for Apache Subversion 1.4.0 through 1.7.13 and 1.8.0 through 1.8.4 allows remote attackers to bypass intended access restrictions and possibly cause a denial of service (resource consumption) via a relative URL in a REPORT request.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4505

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38