Denial of service vulnerability in Apache Subversion

Описание

An integer overflow was found in Apache Subversion. By exploiting this vulnerability malicious authenticated users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed request.

---

Technical details

This vulnerability can be triggered via a skel-encoded request body which can cause out-of-bounds read and heap-based buffer overflow.

Первичный источник обнаружения

• Apache advisory
  

Связанные продукты

• Apache-Subversion

Список CVE

• CVE-2015-5343
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com