httpd mod_include SSI overflow

Buffer overflow in the gettag function in modinclude for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI XSSI documents that trigger a length calculation error...

FreeBSD : apache mod_include buffer overflow vulnerability (11)

The following package needs to be updated: apache+ipv6 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg6e6a6b8a2fde11d9b3a20050fc56d258.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...

DSA-594-1 apache - buffer overflows

Bulletin has no description...

Debian DSA-594-1 : apache - buffer overflows

Two vulnerabilities have been identified in the Apache 1.3 webserver : - CAN-2004-0940 'Crazy Einstein' has discovered a vulnerability in the 'modinclude' module, which can cause a buffer to be overflown and could lead to the execution of arbitrary code. - NO VULN ID Larry Cashdollar has discover...

Apache 1.3: Buffer overflow vulnerability in mod_include

Background The Apache HTTP server is one of the most popular web servers on the internet. modinclude is an Apache module to handle Server Side Includes SSI. Description A possible buffer overflow exists in the gettag function of modinclude.c. Impact If Server Side Includes SSI are enabled, a loca...

GLSA-200411-03 : Apache 1.3: Buffer overflow vulnerability in mod_include

The remote host is affected by the vulnerability described in GLSA-200411-03 Apache 1.3: Buffer overflow vulnerability in modinclude A possible buffer overflow exists in the gettag function of modinclude.c. Impact : If Server Side Includes SSI are enabled, a local attacker may be able to run...

CVE-2004-0940

CVE-2004-0940 is a confirmed vulnerability: a buffer overflow in mod_include.get_tag() affects Apache 1.3.x up to 1.3.32, allowing local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents that trigger a length calculation error. The impact is ...

Apache mod_include get_tag() Function Local Overflow

The remote web server appears to be running a version of Apache that is older than version 1.3.33. This version is vulnerable to a local buffer overflow in the gettag function of the module 'modinclude' when a specially crafted document with malformed server-side includes is requested though an...

apache mod_include buffer overflow vulnerability

There is a buffer overflow in a function used by modinclude that may enable a local user to gain privileges of a httpd child. Only users that are able to create SSI documents can take advantage of that vulnerability...

Apache Httpd < 1.3.33 : mod_include overflow

A buffer overflow in modinclude could allow a local user who is authorised to create server side include SSI files to gain the privileges of a httpd child...

Apache 1.3.31 mod_include - Local Buffer Overflow

Apache 1.3.31 modinclude - Local Buffer Overflow / local exploit for modinclude of apache 1.3.x written by xCrZx /18.10.2004/ bug found by xCrZx /18.10.2004/ Successfully tested on apache 1.3.31 under Linux RH9.0Shrike / / Technical Details: there is an overflow in gettag function: static char...

Apache <= 1.3.31 mod_include Local Buffer Overflow Exploit

Exploit for linux platform in category local exploits ========================================================== Apache = 1.3.31 modinclude Local Buffer Overflow Exploit ========================================================== / local exploit for modinclude of apache 1.3.x written by xCrZx...

Apache 1.3.31 mod_include - Local Buffer Overflow

/ local exploit for modinclude of apache 1.3.x written by xCrZx /18.10.2004/ bug found by xCrZx /18.10.2004/ Successfully tested on apache 1.3.31 under Linux RH9.0Shrike / / Technical Details: there is an overflow in gettag function: static char gettagpool p, FILE in, char tag, int tagbuflen, int...

Apache 1.3.x mod_include - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/11471/info The problem presents itself when the affected module attempts to parse modinclude-specific tag values. A failure to properly validate the lengths of user-supplied tag strings before copying them into finite buffers facilitates the overflow. ...

RHEL 3 : httpd (RHSA-2004:084)

Updated httpd packages are now available that fix a denial of service vulnerability in modssl and include various other bug fixes. The Apache HTTP server is a powerful, full-featured, efficient, and freely-available Web server. A memory leak in modssl in the Apache HTTP Server prior to version...

Important: Red Hat Security Advisory: httpd security update

Updated httpd packages are now available that fix a denial of service vulnerability in modssl and include various other bug fixes. The Apache HTTP server is a powerful, full-featured, efficient, and freely-available Web server. A memory leak in modssl in the Apache HTTP Server prior to version...