Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Apache HTTP Server Incorrect Calculation of Buffer Size Vulnerability - CVE-2004-0940 - Vulnerability Database
Apache HTTP Server

Apache HTTP Server Incorrect Calculation of Buffer Size Vulnerability - CVE-2004-0940

High
Reference: CVE-2004-0940
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2004-0940
Title: Apache HTTP Server Incorrect Calculation of Buffer Size Vulnerability
Overview:

Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents that trigger a length calculation error.