VDB
CVE-2005-2970
CVE-2005-2970
PUBLISHED
CVSS 5 MEDIUM
Memory leak in the worker MPM (worker.c) for Apache 2, in certain circumstances, allows remote attackers to cause a denial of service (memory consumption) via aborted connections, which prevents the memory for the transaction pool from being reused for other connections.
EPSS 20.80% · 95.7th percentile
Risk Scores
CVSS v2.0
5
EPSS Score
20.80%
95.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| canonical | ubuntu_linux | 5.04, 5.10, 4.10 |
| apache | http_server | 2.0.36 |
| redhat | enterprise_linux_server | 4.0, 3.0 |
| redhat | enterprise_linux_desktop | 3.0, 4.0 |
| redhat | enterprise_linux_workstation | 3.0, 4.0 |
| n/a | n/a | * |
| fedoraproject | fedora_core | 4 |
Timeline
- Oct 25, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 17, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 24, 2023 EPSS Score
- Jul 15, 2023 EPSS Score
- Oct 28, 2023 EPSS Score
- Dec 20, 2023 EPSS Score
References
- 1015093 vdb
- SUSE-SR:2005:028 vendor-advisory
- USN-225-1 vendor-advisory
- http://mail-archives.apache.org/mod_mbox/httpd-cvs/200509.mbox/%3C20051001110218.40692.qmail%40minotaur.apache.org%3E url
- RHSA-2006:0159 vendor-advisory
- 15762 vdb
- MDKSA-2005:233 vendor-advisory
- 18333 third-party-advisory
- 17923 third-party-advisory
- http://svn.apache.org/viewcvs?rev=292949&view=rev url
- FLSA-2006:175406 vendor-advisory
- FEDORA-2006-052 vendor-advisory
- oval:org.mitre.oval:def:10043 vdb
- 18585 third-party-advisory
- 18161 third-party-advisory
- 16559 third-party-advisory
- [httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html mailing-list
- [httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html mailing-list
- [httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html mailing-list
- [httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html mailing-list
…and 23 more