FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2004-0747

This CVE name corresponds to:

Entered Topic
2004-09-15 apache -- ap_resolve_env buffer overflow

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2004-0747
Phase Assigned(20040726)

Description

Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.

References

Source Reference
MISC http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147
GENTOO GLSA-200409-21
MANDRAKE MDKSA-2004:096
REDHAT RHSA-2004:463
SUSE SUSE-SA:2004:032
TRUSTIX 2004-0047
CERT-VN VU#481998
OVAL oval:org.mitre.oval:def:11561
SECTRACK 1011303
SECUNIA 12540
SECUNIA 34920
VUPEN ADV-2009-1233
XF apache-env-configuration-bo(17384)