CVE-2004-0809
libapache-mod-dav - null pointer dereference
EPSS 14.0%
Description
The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.
How to fix CVE-2004-0809
To remediate CVE-2004-0809, upgrade the affected package to a fixed version below.
- Debian/apache2—upgrade to 2.0.51-1 or later
- Debian/libapache-mod-dav—upgrade to 1.0.3-3.1 or later
Is CVE-2004-0809 being exploited?
Moderate — EPSS is 14.0%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 2.0.51-1
- from 0, < 1.0.3-3.1