Executive Summary

Informations
Name CVE-2012-0840 First vendor Publication 2012-02-10
Vendor Cve Last vendor Modification 2023-11-07

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score 5 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

tables/apr_hash.c in the Apache Portable Runtime (APR) library through 1.4.5 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0840

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-20 Improper Input Validation

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 35

OpenVAS Exploits

Date Description
2012-04-02 Name : Fedora Update for apr FEDORA-2012-1709
File : nvt/gb_fedora_2012_1709_apr_fc16.nasl
2012-03-07 Name : Fedora Update for apr FEDORA-2012-1656
File : nvt/gb_fedora_2012_1656_apr_fc15.nasl
2012-02-21 Name : Mandriva Update for apr MDVSA-2012:019 (apr)
File : nvt/gb_mandriva_MDVSA_2012_019.nasl

Nessus® Vulnerability Scanner

Date Description
2014-05-19 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201405-24.nasl - Type : ACT_GATHER_INFO
2012-03-02 Name : The remote Fedora host is missing a security update.
File : fedora_2012-1656.nasl - Type : ACT_GATHER_INFO
2012-03-02 Name : The remote Fedora host is missing a security update.
File : fedora_2012-1709.nasl - Type : ACT_GATHER_INFO
2012-02-15 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2012-019.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

http://mail-archives.apache.org/mod_mbox/apr-commits/201201.mbox/%3C201201150...
Source Url
CONFIRM http://svn.apache.org/viewvc?rev=1231605&view=rev
MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2012:019
MLIST http://openwall.com/lists/oss-security/2012/02/08/3
http://openwall.com/lists/oss-security/2012/02/09/1
http://www.mail-archive.com/dev%40apr.apache.org/msg24439.html
http://www.mail-archive.com/dev%40apr.apache.org/msg24472.html
http://www.mail-archive.com/dev%40apr.apache.org/msg24473.html
SECUNIA http://secunia.com/advisories/47862
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/73096

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
Date Informations
2023-11-07 21:47:02
  • Multiple Updates
2021-08-28 12:10:16
  • Multiple Updates
2021-05-04 12:19:19
  • Multiple Updates
2021-04-22 01:23:02
  • Multiple Updates
2020-05-23 01:48:13
  • Multiple Updates
2020-05-23 00:33:00
  • Multiple Updates
2017-12-05 09:22:03
  • Multiple Updates
2017-08-29 09:23:43
  • Multiple Updates
2016-04-26 21:33:38
  • Multiple Updates
2014-05-20 13:23:11
  • Multiple Updates
2014-02-17 11:08:24
  • Multiple Updates
2013-05-10 22:34:06
  • Multiple Updates