Ivan Zhakov

**Name of the Vulnerable Software and Affected Versions** Apache HTTP Server versions 2.4.0 through 2.4.46 **Description** The issue allows unprivileged local users to stop the httpd service on Windows. This was discovered by Ivan Zhakov. **Recommendations** For Apache HTTP Server versions 2.4.0 through 2.4.46, consider restricting access to the service to prevent unauthorized stoppage until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Apache Subversion mod dav svn module versions 1.10.0 through 1.10.3 Apache Subversion mod dav svn module version 1.11.0 **Description** The issue is related to a pointer dereference error in the mod dav svn module of Apache Subversion. This can be exploited by a remote attacker to cause a denial of service. The vulnerability occurs when a client omits the root path in a recursive directory listing operation, causing the module to crash after dereferencing an uninitialized pointer. **Recommendations** For version 1.10.0 through 1.10.3, update to a version that fixes the pointer dereference error to prevent denial of service attacks. For version 1.11.0, update to a version that fixes the pointer dereference error to prevent denial of service attacks. As a temporary workaround, consider restricting access to the recursive directory listing operation to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Apache Subversion versions 1.7.x through 1.8.14 Apache Subversion versions 1.9.x through 1.9.2 **Description** The issue is caused by an integer overflow in mod dav svn, a component of the centralized version control system Apache Subversion. This can be exploited by a remote attacker to cause a denial of service, such as a server crash or memory consumption, and potentially execute arbitrary code. The exploitation is possible via a specially crafted request body, which triggers an out-of-bounds read and heap-based buffer overflow. **Recommendations** For Apache Subversion versions 1.7.x through 1.8.14, update to version 1.8.15 or later. For Apache Subversion versions 1.9.x through 1.9.2, update to version 1.9.3 or later.

**Name of the Vulnerable Software and Affected Versions** Apache Subversion versions 1.9.0 through 1.9.2 **Description** The issue is related to an integer overflow in the `read string` function, which can be exploited by remote attackers to execute arbitrary code. This is achieved through an svn:// protocol string that triggers a heap-based buffer overflow and an out-of-bounds read. **Recommendations** For Apache Subversion versions 1.9.0 through 1.9.2, update to version 1.9.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the `read string` function in libsvn ra svn/marshal.c until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Subversion versions 1.5.0 through 1.7.19 Subversion versions 1.8.0 through 1.8.11 **Description** The issue allows remote authenticated users to spoof the `svn:author` property via crafted v1 HTTP protocol request sequences. This can be exploited by sending specially formed request sequences to the mod dav svn server. **Recommendations** For Subversion versions 1.5.0 through 1.7.19, update to a version outside of this range to resolve the issue. For Subversion versions 1.8.0 through 1.8.11, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to the mod dav svn server until a patch is available.