TROYANOSYVIRUS
Volver a CVEs

CVE-2004-0700

N/A

Descripcion

Format string vulnerability in the mod_proxy hook functions function in ssl_engine_log.c in mod_ssl before 2.8.19 for Apache before 1.3.31 may allow remote attackers to execute arbitrary messages via format string specifiers in certain log messages for HTTPS that are handled by the ssl_log function.

Detalles CVE

Puntuacion CVSS v3.1N/A
Publicado7/27/2004
Ultima modificacion4/16/2026
Fuentenvd
Avistamientos honeypot0

Productos afectados

gentoo:linuxmod_ssl:mod_ssl

Referencias

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000857(cve@mitre.org)
http://marc.info/?l=apache-modssl&m=109001100906749&w=2(cve@mitre.org)
http://marc.info/?l=bugtraq&m=109005001205991&w=2(cve@mitre.org)
http://packetstormsecurity.org/0407-advisories/modsslFormat.txt(cve@mitre.org)
http://virulent.siyahsapka.org/(cve@mitre.org)
http://www.debian.org/security/2004/dsa-532(cve@mitre.org)
http://www.kb.cert.org/vuls/id/303448(cve@mitre.org)
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:075(cve@mitre.org)
http://www.osvdb.org/7929(cve@mitre.org)
http://www.redhat.com/support/errata/RHSA-2004-405.html(cve@mitre.org)
http://www.redhat.com/support/errata/RHSA-2004-408.html(cve@mitre.org)
http://www.securityfocus.com/bid/10736(cve@mitre.org)
http://www.ubuntu.com/usn/usn-177-1(cve@mitre.org)
https://bugzilla.fedora.us/show_bug.cgi?id=1888(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16705(cve@mitre.org)
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000857(af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=apache-modssl&m=109001100906749&w=2(af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=109005001205991&w=2(af854a3a-2127-422b-91ae-364da2661108)
http://packetstormsecurity.org/0407-advisories/modsslFormat.txt(af854a3a-2127-422b-91ae-364da2661108)
http://virulent.siyahsapka.org/(af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2004/dsa-532(af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/303448(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:075(af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/7929(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2004-405.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2004-408.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/10736(af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/usn-177-1(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.fedora.us/show_bug.cgi?id=1888(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16705(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.