CVE-2004-0809

Published Sep 16, 2004

Last updated a year ago

CVSS info 5.0

Overview

Description: The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Vendor comments

ApacheFixed in Apache HTTP Server 2.0.51: http://httpd.apache.org/security/vulnerabilities_20.html

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A5A9EAAF-A5F4-493E-9530-8A448E55CDCC",
            "versionEndExcluding": "2.0.51",
            "versionStartIncluding": "2.0.35"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:hp:secure_web_server_for_tru64:4.0_f:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A1B94CBB-96FC-40CE-AAAD-A5EC909C4BDB"
          },
          {
            "criteria": "cpe:2.3:a:hp:secure_web_server_for_tru64:4.0_g:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3FFEAF35-AFD1-45D5-AA22-721683125151"
          },
          {
            "criteria": "cpe:2.3:a:hp:secure_web_server_for_tru64:5.0_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "052263D4-3D40-4205-AD46-2DA09FF7BDD8"
          },
          {
            "criteria": "cpe:2.3:a:hp:secure_web_server_for_tru64:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E1B80DFA-523E-415D-903E-8DFB6A511487"
          },
          {
            "criteria": "cpe:2.3:a:hp:secure_web_server_for_tru64:5.1_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D87F4AEB-8A5D-4468-85DC-D353CD5F7BBE"
          },
          {
            "criteria": "cpe:2.3:a:hp:secure_web_server_for_tru64:5.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "306AD5DC-3815-4281-8CC7-79817AA8C437"
          },
          {
            "criteria": "cpe:2.3:a:hp:secure_web_server_for_tru64:5.8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1DABC6BF-F17C-49A2-87CB-136A235899B0"
          },
          {
            "criteria": "cpe:2.3:a:hp:secure_web_server_for_tru64:5.9.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFF5CC55-CC68-4649-8439-31CB90D863EE"
          },
          {
            "criteria": "cpe:2.3:a:hp:secure_web_server_for_tru64:5.9.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F26601F-5146-492F-A5A3-A8E3C7F5EF00"
          },
          {
            "criteria": "cpe:2.3:a:hp:secure_web_server_for_tru64:6.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D3673637-53BE-4AFF-AE0D-31C427CB3C5A"
          },
          {
            "criteria": "cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65ED9D8C-604D-4B0B-A192-C0DA4D2E9AEB"
          },
          {
            "criteria": "cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "771931F7-9180-4EBD-8627-E1CF17D24647"
          },
          {
            "criteria": "cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EDD9BE2B-7255-4FC1-B452-E8370632B03F"
          },
          {
            "criteria": "cpe:2.3:o:hp:hp-ux:11.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EBD0DC0A-ACAD-4870-9C0F-3095F2AC8CCD"
          },
          {
            "criteria": "cpe:2.3:o:hp:hp-ux:11.23:*:ia64_64-bit:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D73D159B-C3D8-4BBD-8BAA-E9E8D3AD3A04"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:9.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4177C378-7729-46AB-B49B-C6DAED3200E7"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:9.2:*:amd64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2164D10D-D1A4-418A-A9C8-CA8FAB1E90A7"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A06E5CD0-8BEC-4F4C-9E11-1FEE0563946C"
          },
          {
            "criteria": "cpe:2.3:o:mandrakesoft:mandrake_linux:10.0:*:amd64:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A3BDD466-84C9-4CFC-A3A8-7AC0F752FB53"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_server:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "78B46FFA-5B09-473E-AD33-3DB18BD0DAFE"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC79FF22-2664-4C40-B0B3-6D23B5F45162"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:workstation_server:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EFE2E73-9536-41A9-B83B-0A06B54857F4"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF3BBBC3-3EF9-4E24-9DE2-627E172A5473"
          },
          {
            "criteria": "cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53AF1A2D-B0A2-4097-AD1D-DF3AF27171BA"
          },
          {
            "criteria": "cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A67735E5-E43E-4164-BDB2-ADC6E0288E9F"
          },
          {
            "criteria": "cpe:2.3:o:turbolinux:turbolinux_desktop:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31C3FFDD-03BF-4FD4-B7A7-B62AFD5DBA19"
          },
          {
            "criteria": "cpe:2.3:o:turbolinux:turbolinux_home:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "065FF0F1-7FAC-4584-92EA-EAA87DC76FA1"
          },
          {
            "criteria": "cpe:2.3:o:turbolinux:turbolinux_server:10.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B484D091-62DE-4EF2-AC54-26896CA8B315"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2CAE037F-111C-4A76-8FFE-716B74D65EF3"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Vendor comments

Configurations

References