Unrated severityNVD Advisory· Published Jun 6, 2011· Updated Apr 29, 2026

CVE-2011-1752

Description

The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.17, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request for a baselined WebDAV resource, as exploited in the wild in May 2011.

Affected products

Apache/Subversion
cpe:2.3:a:apache:subversion:*:*:*:*:*:*:*:*
Range: <1.6.17
Canonical (company)/Ubuntu Linux3 versions
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*+ 2 more
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*
Debian/Debian Linux2 versions
cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
Fedoraproject/Fedora2 versions
cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:fedoraproject:fedora:14:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*
Apple Inc./Mac Os X
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Range: <10.7.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apple.com/archives/security-announce/2012/Feb/msg00000.htmlnvdMailing ListThird Party Advisory
lists.fedoraproject.org/pipermail/package-announce/2011-July/062211.htmlnvdThird Party Advisory
lists.fedoraproject.org/pipermail/package-announce/2011-June/061913.htmlnvdThird Party Advisory
secunia.com/advisories/44633nvdThird Party Advisory
secunia.com/advisories/44681nvdThird Party Advisory
secunia.com/advisories/44849nvdThird Party Advisory
secunia.com/advisories/44879nvdThird Party Advisory
secunia.com/advisories/44888nvdThird Party Advisory
secunia.com/advisories/45162nvdThird Party Advisory
subversion.apache.org/security/CVE-2011-1752-advisory.txtnvdVendor Advisory
support.apple.com/kb/HT5130nvdVendor Advisory
svn.apache.org/repos/asf/subversion/tags/1.6.17/CHANGESnvdRelease NotesThird Party Advisory
www.debian.org/security/2011/dsa-2251nvdThird Party Advisory
www.mandriva.com/security/advisoriesnvdThird Party Advisory
www.redhat.com/support/errata/RHSA-2011-0861.htmlnvdThird Party Advisory
www.redhat.com/support/errata/RHSA-2011-0862.htmlnvdThird Party Advisory
www.securityfocus.com/bid/48091nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/idnvdThird Party AdvisoryVDB Entry
www.ubuntu.com/usn/USN-1144-1nvdThird Party Advisory
bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18922nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.018
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000