Lucene search
FreeBSD6E6A6B8A-2FDE-11D9-B3A2-0050FC56D258HistoryOct 22, 2004 - 12:00 a.m.
apache mod_include buffer overflow vulnerability
2004-10-2200:00:00
vuxml.freebsd.org
14
0.001 Low
EPSS
Percentile
46.6%
There is a buffer overflow in a function used by mod_include
that may enable a local user to gain privileges of a httpd
child. Only users that are able to create SSI documents can
take advantage of that vulnerability.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | apache | < 1.3.33 | UNKNOWN |
| FreeBSD | any | noarch | apache+mod_ssl | < 1.3.32+2.8.21_1 | UNKNOWN |
| FreeBSD | any | noarch | apache+mod_ssl+ipv6 | < 1.3.32+2.8.21_1 | UNKNOWN |
| FreeBSD | any | noarch | apache+mod_perl | <= 1.3.31 | UNKNOWN |
| FreeBSD | any | noarch | apache+ipv6 | < 1.3.33 | UNKNOWN |
| FreeBSD | any | noarch | apache+ssl | <= 1.3.29.1.55 | UNKNOWN |
| FreeBSD | any | noarch | ru-apache | < 1.3.33+30.21 | UNKNOWN |
| FreeBSD | any | noarch | ru-apache+mod_ssl | < 1.3.33+30.21+2.8.22 | UNKNOWN |
References
Related
f5
f5
Buffer overflow in mod_include - CAN-2004-0940
2007-05-17 04:00:00
osv
osv
apache - buffer overflows
2004-11-17 00:00:00
nessus
nessus
Apache mod_include get_tag() Function Local Overflow
2004-10-25 00:00:00
GLSA-200411-03 : Apache 1.3: Buffer overflow vulnerability in mod_include
2004-11-02 00:00:00
FreeBSD : apache mod_include buffer overflow vulnerability (11)
2004-11-23 00:00:00
ubuntucve
ubuntucve
CVE-2004-0940
2005-02-09 00:00:00
cve
cve
CVE-2004-0940
2005-02-09 05:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200411-03 (apache)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200411-03 (apache)
2008-09-24 00:00:00
Debian Security Advisory DSA 594-1 (apache)
2008-01-17 00:00:00
gentoo
gentoo
Apache 1.3: Buffer overflow vulnerability in mod_include
2004-11-02 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache mod_include Buffer Overflow (CVE-2004-0940)
2010-07-07 00:00:00
cvelist
cvelist
CVE-2004-0940
2004-10-26 04:00:00
debian
debian
[SECURITY] [DSA 594-1] New Apache packages fix arbitrary code execution
2004-11-17 12:05:54
[SECURITY] [DSA 594-1] New Apache packages fix arbitrary code execution
2004-11-17 00:00:00
httpd
httpd
Apache Httpd < 1.3.33 : mod_include overflow
2004-10-21 00:00:00
slackware
slackware
[slackware-security] apache+mod_ssl
2004-11-01 08:00:31
redhat
redhat
(RHSA-2004:600) apache, mod_ssl security update
2004-12-13 00:00:00
suse
suse
remote system compromise in xshared, XFree86-libs, xorg-x11-libs
2004-11-17 16:17:43
potential remote buffer overflow in samba
2004-11-15 22:07:05