U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database

Vulnerability Change Records for CVE-2010-1452

Change History

Modified Analysis by NIST 11/01/2023 11:32:37 AM

Action Type Old Value New Value
Changed CPE Configuration 
OR
     *cpe:2.3:a:apache:http_server:-:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.0:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.1:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.2:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.3:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.4:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.6:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.7:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.8:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.10:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.11:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.12:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.13:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.14:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:http_server:2.2.15:*:*:*:*:*:*:*
 
OR
     *cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions from (including) 2.0.35 up to (excluding) 2.0.64
     *cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions from (including) 2.2.0 up to (excluding) 2.2.16
Changed Evaluator Impact 
Per: http://httpd.apache.org/security/vulnerabilities_22.html

'A flaw was found in the handling of requests by mod_cache and mod_dav. A malicious remote attacker could send a carefully crafted request and cause a httpd child process to crash. This crash would only be a denial of service if using the worker MPM. This issue is further mitigated as mod_dav is only affected by requests that are most likely to be authenticated, and mod_cache is only affected if the uncommon "CacheIgnoreURLSessionIdentifiers" directive, introduced in version 2.2.14, is used.'
 
Per: http://httpd.apache.org/security/vulnerabilities_22.html

'A flaw was found in the handling of requests by mod_cache and mod_dav. A malicious remote attacker could send a carefully crafted request and cause a httpd child process to crash. This crash would only be a denial of service if using the worker MPM. This issue is further mitigated as mod_dav is only affected by requests that are most likely to be authenticated, and mod_cache is only affected if the uncommon "CacheIgnoreURLSessionIdentifiers" directive, introduced in version 2.2.14, is used.'
Changed Reference Type 
http://blogs.sun.com/security/entry/cve_2010_1452_mod_dav No Types Assigned
 
http://blogs.sun.com/security/entry/cve_2010_1452_mod_dav Broken Link, Third Party Advisory
Changed Reference Type 
http://httpd.apache.org/security/vulnerabilities_22.html No Types Assigned
 
http://httpd.apache.org/security/vulnerabilities_22.html Third Party Advisory
Changed Reference Type 
http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html No Types Assigned
 
http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html Mailing List
Changed Reference Type 
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html No Types Assigned
 
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00009.html Broken Link
Changed Reference Type 
http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html No Types Assigned
 
http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00008.html Third Party Advisory
Changed Reference Type 
http://marc.info/?l=bugtraq&m=129190899612998&w=2 No Types Assigned
 
http://marc.info/?l=bugtraq&m=129190899612998&w=2 Third Party Advisory
Changed Reference Type 
http://marc.info/?l=bugtraq&m=133355494609819&w=2 No Types Assigned
 
http://marc.info/?l=bugtraq&m=133355494609819&w=2 Mailing List, Third Party Advisory
Changed Reference Type 
http://secunia.com/advisories/42367 No Types Assigned
 
http://secunia.com/advisories/42367 Broken Link, Third Party Advisory
Changed Reference Type 
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.467395 No Types Assigned
 
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.467395 Mailing List, Third Party Advisory
Changed Reference Type 
http://support.apple.com/kb/HT4581 No Types Assigned
 
http://support.apple.com/kb/HT4581 Third Party Advisory, VDB Entry
Changed Reference Type 
http://ubuntu.com/usn/usn-1021-1 No Types Assigned
 
http://ubuntu.com/usn/usn-1021-1 Third Party Advisory, VDB Entry
Changed Reference Type 
http://www.redhat.com/support/errata/RHSA-2010-0659.html No Types Assigned
 
http://www.redhat.com/support/errata/RHSA-2010-0659.html Broken Link
Changed Reference Type 
http://www.redhat.com/support/errata/RHSA-2011-0896.html No Types Assigned
 
http://www.redhat.com/support/errata/RHSA-2011-0896.html Broken Link
Changed Reference Type 
http://www.redhat.com/support/errata/RHSA-2011-0897.html No Types Assigned
 
http://www.redhat.com/support/errata/RHSA-2011-0897.html Broken Link
Changed Reference Type 
http://www.vupen.com/english/advisories/2010/2218 No Types Assigned
 
http://www.vupen.com/english/advisories/2010/2218 Broken Link
Changed Reference Type 
http://www.vupen.com/english/advisories/2010/3064 No Types Assigned
 
http://www.vupen.com/english/advisories/2010/3064 Broken Link
Changed Reference Type 
http://www.vupen.com/english/advisories/2011/0291 No Types Assigned
 
http://www.vupen.com/english/advisories/2011/0291 Broken Link
Changed Reference Type 
https://issues.apache.org/bugzilla/show_bug.cgi?id=49246 No Types Assigned
 
https://issues.apache.org/bugzilla/show_bug.cgi?id=49246 Issue Tracking
Changed Reference Type 
https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r688df6f16f141e966a0a47f817e559312b3da27886f59116a94b273d%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/rad2acee3ab838b52c04a0698b1728a9a43467bf365bd481c993c535d%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/rad2acee3ab838b52c04a0698b1728a9a43467bf365bd481c993c535d%40%3Ccvs.httpd.apache.org%3E Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/re2e23465bbdb17ffe109d21b4f192e6b58221cd7aa8797d530b4cd75%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E No Types Assigned
 
https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type 
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11683 No Types Assigned
 
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11683 Broken Link, Third Party Advisory
Changed Reference Type 
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12341 No Types Assigned
 
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12341 Broken Link, Third Party Advisory