Apache Web Server Configuration File Environment Variable Local Buffer Overflow Vulnerability

According to its version number, the remote version of Apache Web Server is prone to a local buffer-overflow vulnerability that affects a configuration file environment variable. This occurs because the application fails to validate user-supplied string lengths before copying them into finite...

FreeBSD Ports: apache

The remote host is missing an update to the system as announced in the referenced advisory. VID 4d49f4ba-071f-11d9-b45d-000c41e2cdad OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Fedora Core 2 : httpd-2.0.51-2.7 (2004-313)

Tue Sep 21 2004 Joe Orton 2.0.51-2.7 - aprgetlinecore fix from Rici Lake - Tue Sep 21 2004 Joe Orton 2.0.51-2.6 - fix 2.0.51 regression in Satisfy merging CVE-2004-0811 - Thu Sep 16 2004 Joe Orton 2.0.51-2.5 - modssl: prevent SIGHUP-triggers-SIGSEGV after upgrade from 2.0.50 - revert...

CVE-2004-0747

CVE-2004-0747 describes a local buffer overflow in Apache HTTP Server versions 2.0.50 and earlier, triggered by expansion of environment variables in .htaccess or server configuration files. The underlying issue involves copying environment data into a fixed-size buffer (ap_resolve_env) via strin...