← Back

CVE-2004-0940

nvd nist
Published: Feb 9, 2005Modified: Apr 16, 2026

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local users who can create SSI documents to execute arbitrary code as the apache user via SSI (XSSI) documents that trigger a length calculation error.

Affected (21)

Products: Apache: Http Server · Openpkg: Openpkg · Hp: Hp Ux · +3 more
Show all products
Apache: Http Server · Openpkg: Openpkg · Hp: Hp Ux · Slackware: Slackware Linux · Suse: Suse Linux · Trustix: Secure Linux
Apache
1 product
Http Server
Openpkg
1 product
Openpkg
Hp
1 product
Hp Ux
Slackware
1 product
Slackware Linux
Suse
1 product
Suse Linux
Trustix
1 product
Secure Linux
Configuration A
4 vulnerable
Vulnerable SoftwareAffected Versions
Http Server
From 1.3 to 1.3.32
Openpkg
Openpkg
Version 2.0
Openpkg
Version 2.1
Openpkg
Version 2.2
Configuration B
17 vulnerable
Vulnerable SoftwareAffected Versions
Hp
Hp Ux
Version 11.00
Hp Ux
Version 11.11
Hp Ux
Version 11.20
Hp Ux
Version 11.22
Slackware
Slackware Linux
Version 10.0
Slackware Linux
Version 8.0
Slackware Linux
Version 8.1
Slackware Linux
Version 9.0
Slackware Linux
Version 9.1
Slackware Linux
Version current
Suse
Suse Linux
Version 8.0
Suse Linux
Version 8.1
Suse Linux
Version 8.2
Suse Linux
Version 9.0
Suse Linux
Version 9.1
Suse Linux
Version 9.2
Secure Linux
Version 1.5

Related CWEs

CWE-131
Incorrect Calculation of Buffer Size
The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.

References (42)

Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken LinkThird Party AdvisoryVDB Entry
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
Product
Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken LinkExploitPatchThird Party AdvisoryVDB EntryVendor Advisory
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: cve@mitre.org
Mailing ListPatch
Source: cve@mitre.org
Mailing ListPatch
Source: cve@mitre.org
Mailing ListPatch
Source: cve@mitre.org
Mailing ListPatch
Source: cve@mitre.org
Mailing ListPatch
Source: cve@mitre.org
Mailing ListPatch
Source: cve@mitre.org
Mailing ListPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkExploitPatchThird Party AdvisoryVDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatch

Timeline

No history available yet.