Lucene search
Ubuntu.comUB:CVE-2004-0700HistoryJul 27, 2004 - 12:00 a.m.
CVE-2004-0700
2004-07-2700:00:00
ubuntu.com
ubuntu.com
11
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.901 High
EPSS
Percentile
98.8%
Format string vulnerability in the mod_proxy hook functions function in
ssl_engine_log.c in mod_ssl before 2.8.19 for Apache before 1.3.31 may
allow remote attackers to execute arbitrary messages via format string
specifiers in certain log messages for HTTPS that are handled by the
ssl_log function.
Related
nessus
nessus
Mandrake Linux Security Advisory : mod_ssl (MDKSA-2004:075)
2004-07-31 00:00:00
Apache mod_ssl ssl_engine_log.c mod_proxy Hook Function Remote Format String
2004-07-16 00:00:00
cve
cve
CVE-2004-0700
2004-07-27 04:00:00
openvas
openvas
mod_ssl hook functions format string vulnerability
2005-11-03 00:00:00
FreeBSD Ports: apache+mod_ssl
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200407-18 (mod_ssl)
2008-09-24 00:00:00
f5
f5
SOL5534 - Apache mod_proxy message format vulnerability - CAN-2004-0700
2007-05-16 00:00:00
K5534 : Apache mod_proxy message format vulnerability CAN-2004-0700
2013-03-28 00:00:00
K000138508 : mod_ssl vulnerability CVE-2004-0700
2024-02-06 00:00:00
freebsd
freebsd
apache13-modssl -- format string vulnerability in proxy support
2004-07-16 00:00:00
redhat
redhat
(RHSA-2004:408) mod_ssl security update
2004-09-07 00:00:00
osv
osv
libapache-mod-ssl - several vulnerabilities
2004-07-27 00:00:00
debian
debian
ubuntu
ubuntu
Apache 2 vulnerabilities
2005-09-07 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.901 High
EPSS
Percentile
98.8%
Related for UB:CVE-2004-0700