Дата обнаружения
|
14/01/2016 |
Уровень угрозы
|
Critical |
Описание
|
An integer overflow was found in Apache Subversion. By exploiting this vulnerability malicious authenticated users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed request. Technical details This vulnerability can be triggered via a skel-encoded request body which can cause out-of-bounds read and heap-based buffer overflow. |
Пораженные продукты
|
Apache Subversion versions earlier than 1.8.15 |
Решение
|
Update to the latest version |
Первичный источник обнаружения
|
Apache advisory |
Оказываемое влияние
?
|
DoS
[?]
|
Связанные продукты
|
Apache Subversion |
CVE-IDS
|
|
Узнай статистику распространения уязвимостей в твоем регионе |