CVE-2004-1765

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

Off-by-one buffer overflow in ModSecurity (mod_security) 1.7.4 for Apache 2.x, when SecFilterScanPost is enabled, allows remote attackers to execute arbitrary code via crafted POST requests.

Ссылки

http://marc.info/?l=bugtraq&m=107945597331370&w=2
http://secunia.com/advisories/11138
Patch
http://www.kb.cert.org/vuls/id/779438
Third Party Advisory
US Government Resource
http://www.modsecurity.org/
http://www.s-quadra.com/advisories/Adv-20040315.txt
http://www.securityfocus.com/bid/9885
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/15489
http://marc.info/?l=bugtraq&m=107945597331370&w=2
http://secunia.com/advisories/11138
Patch
http://www.kb.cert.org/vuls/id/779438
Third Party Advisory
US Government Resource
http://www.modsecurity.org/
http://www.s-quadra.com/advisories/Adv-20040315.txt
http://www.securityfocus.com/bid/9885
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/15489

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mod_security:mod_security:1.7.4:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.22301

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2004-1765

debian

около 21 года назад

Off-by-one buffer overflow in ModSecurity (mod_security) 1.7.4 for Apa ...

GHSA-m25w-37x6-fpxv

github

почти 4 года назад