 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2016-8734 |
| Description: | Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of- service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU resources or memory. |
| Test IDs: | 1.3.6.1.4.1.25623.1.0.703932 1.3.6.1.4.1.25623.1.1.10.2017.0009 1.3.6.1.4.1.25623.1.0.872237 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2016-8734 BugTraq ID: 94588 http://www.securityfocus.com/bid/94588 https://subversion.apache.org/security/CVE-2016-8734-advisory.txt Debian Security Information: DSA-3932 (Google Search) http://www.debian.org/security/2017/dsa-3932 https://www.oracle.com/security-alerts/cpuoct2020.html https://www.oracle.com/security-alerts/cpuoct2020.html https://lists.apache.org/thread.html/7798f5cda1b2a3c70db4be77694b12dec8fcc1a441b00009d44f0e09@%3Cannounce.apache.org%3E http://www.securitytracker.com/id/1037361 |