DescriptionBuffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents that trigger a length calculation error.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SA:2004:040, published Monday, Nov 15th 2004 18:00 MEST
- SUSE-SA:2004:041, published Wednesday, Nov 17th 2004 15:00 MET
- SUSE-SR:2004:001, published Wednesday, Nov 24th 2004 12:00 MEST
SUSE Timeline for this CVECVE page created: Fri Jun 28 01:00:39 2013
CVE page last modified: Fri Oct 7 12:45:29 2022