Apache HTTP Server 'mod_ssl' Off By One Vulnerability

The remote host is using a version of modssl which is older than 2.8.10. This version is vulnerable to an off by one buffer overflow which may allow a user with write access to .htaccess files to execute arbitrary code on the system with permissions of the web server. SPDX-FileCopyrightText: 2002...

CVE-2002-0653

Off-by-one buffer overflow in the sslcompatdirective function, as called by the rewritecommand hook for modssl Apache module 2.8.9 and earlier, allows local users to execute arbitrary code as the Apache server user via .htaccess files with long entries...

CVE-2002-0653

The CVE-2002-0653 issue is an off-by-one buffer overflow in mod_ssl (Apache) software, triggered by the ssl_compat_directive function via the rewrite_command hook in version 2.8.9 and earlier. This local vulnerability lets attackers with write access to .htaccess files execute arbitrary code as t...

CVE-2002-0653

Off-by-one buffer overflow in the sslcompatdirective function, as called by the rewritecommand hook for modssl Apache module 2.8.9 and earlier, allows local users to execute arbitrary code as the Apache server user via .htaccess files with long entries...