CVE-2013-4505

Name of the Vulnerable Software and Affected Versions Apache Subversion versions 1.4.0 through 1.7.13 Apache Subversion versions 1.8.0 through 1.8.4

Description The issue allows remote attackers to bypass intended access restrictions and possibly cause a denial of service via a relative URL in a REPORT request. This is due to the is this legal function in mod dontdothat.

Recommendations For Apache Subversion versions 1.4.0 through 1.7.13, consider updating to a version outside of this range to resolve the issue. For Apache Subversion versions 1.8.0 through 1.8.4, consider updating to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to the mod dontdothat module to minimize the risk of exploitation.