CVE-2003-0542 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2003-0542
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2003-0542

Description: Multiple stack-based buffer overflows in (1) mod_alias and (2) mod_rewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service (crash) or execute arbitrary code via a regular expression with more than 9 captures.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/13400 SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-101841-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101444-1 SGI SCO SAID Secunia Advisory: SA10096 Secunia Advisory: SA10098 Secunia Advisory: SA10102 Secunia Advisory: SA10112 Secunia Advisory: SA10114 Secunia Advisory: SA10153 Secunia Advisory: SA10260 Secunia Advisory: SA10264 Secunia Advisory: SA10463 Secunia Advisory: SA10580 Secunia Advisory: SA10593 REDHAT http://www.redhat.com/support/errata/RHSA-2005-816.html http://www.redhat.com/support/errata/RHSA-2004-015.html http://www.redhat.com/support/errata/RHSA-2003-405.html http://www.redhat.com/support/errata/RHSA-2003-360.html http://www.redhat.com/support/errata/RHSA-2003-320.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:863 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:864 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:3799 MANDRAKE http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2003:103 IMMUNIX HP http://www.securityfocus.com/advisories/6079 CONFIRM http://docs.info.apple.com/article.html?artnum=61798 http://lists.apple.com/mhonarc/security-announce/msg00045.html http://httpd.apache.org/dist/httpd/Announcement2.html CERT-VN 434566 549142 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=106761802305141&w=2 http://www.securityfocus.com/archive/1/342674 BID 8911 9504 APPLE http://lists.apple.com/archives/security-announce/2004/Jan/msg00000.html

Return to the previous page.