Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2002-0842
HistorySep 01, 2004 - 4:00 a.m.

CVE-2002-0842

2004-09-0104:00:00
mitre
raw.githubusercontent.com
1

7.5 High

AI Score

Confidence

Low

0.023 Low

EPSS

Percentile

89.7%

JSON

Format string vulnerability in certain third party modifications to mod_dav for logging bad gateway messages (e.g. Oracle9i Application Server 9.0.2) allows remote attackers to execute arbitrary code via a destination URI that forces a β€œ502 Bad Gateway” response, which causes the format string specifiers to be returned from dav_lookup_uri() in mod_dav.c, which is then used in a call to ap_log_rerror().

Related

securityvulns 3
cert 1
cve 1
nessus 1
securityvulns
securityvulns
CERT Advisory CA-2003-05 Multiple Vulnerabilities in Oracle Servers
2003-02-20 00:00:00
Re: CSSA-2003-007.0 Advisory withdrawn.
2003-02-19 00:00:00
Security Update: [CSSA-2003-007.0] Linux: Apache mod_dav module format string vulnerability
2003-02-18 00:00:00
cert
cert
Some implementations of mod_dav contain a format string vulnerability in "ap_log_rerror()" function
2003-02-14 00:00:00
cve
cve
CVE-2002-0842
2003-03-03 05:00:00
nessus
nessus
Oracle Application Server Multiple Vulnerabilities
2012-01-24 00:00:00

7.5 High

AI Score

Confidence

Low

0.023 Low

EPSS

Percentile

89.7%

JSON
Related for CVELIST:CVE-2002-0842
securityvulns3cert1cve1nessus1