Follow @discotekdotca
CVE-2004-0488
Current Description
Stack-based buffer overflow in the ssl_util_uuencode_binary function in ssl_util.c for Apache mod_ssl, when mod_ssl is configured to trust the issuing CA, may allow remote attackers to execute arbitrary code via a client certificate with a long subject DN.
Basic Data
| Published | July 07, 2004 |
|---|---|
| Last Modified | October 11, 2017 |
| Assigner | cve@mitre.org |
| Data Type | CVE |
| Data Format | MITRE |
| Data Version | 4.0 |
| Problem Type | NVD-CWE-Other |
| CVE Data Version | 4.0 |
Base Metric V2
| CVSS 2 - Version | 2.0 |
|---|---|
| CVSS 2 - Vector String | AV:N/AC:L/Au:N/C:P/I:P/A:P |
| CVSS 2 - Access Vector | NETWORK |
| CVSS 2 - Access Complexity | LOW |
| CVSS 2 - Authentication | NONE |
| CVSS 2 - Confidentiality Impact | PARTIAL |
| CVSS 2 - Availability Impact | PARTIAL |
| CVSS 2 - Base Score | 7.5 |
| Severity | HIGH |
| Exploitability Score | 10.0 |
| Impact Score | 6.4 |
| Obtain All Privilege | false |
| Obtain User Privilege | false |
| Obtain Other Privilege | true |
Base Metric V3
No data provided.
Configurations
-
OR - Configuration 1
Cpe Version Part Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other Version Start Including Version End Including Version Start Excluding Version End Excluding 2.3 Application Apache Http Server 1.3 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.1 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.3 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.4 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.6 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.7 * dev * * * * * � � � � 2.3 Application Apache Http Server 1.3.9 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.11 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.12 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.14 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.17 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.18 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.19 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.20 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.22 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.23 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.24 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.25 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.26 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.27 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.28 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.29 * * * * * * * � � � � 2.3 Application Apache Http Server 1.3.31 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.9 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.28 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.28 beta * * * * * * � � � � 2.3 Application Apache Http Server 2.0.32 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.35 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.36 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.37 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.38 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.39 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.40 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.41 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.42 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.43 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.44 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.45 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.46 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.47 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.48 * * * * * * * � � � � 2.3 Application Apache Http Server 2.0.49 * * * * * * * � � � � 2.3 Application Mandrakesoft Mandrake Multi Network Firewall 8.2 * * * * * * * � � � � 2.3 Application Mod Ssl Mod Ssl 2.8.7 * * * * * * * � � � � 2.3 Application Mod Ssl Mod Ssl 2.8.10 * * * * * * * � � � � 2.3 Application Mod Ssl Mod Ssl 2.8.12 * * * * * * * � � � � 2.3 Application Mod Ssl Mod Ssl 2.8.15 * * * * * * * � � � � 2.3 Application Mod Ssl Mod Ssl 2.8.16 * * * * * * * � � � � 2.3 Application Sgi Propack 2.4 * * * * * * * � � � � 2.3 Application Tinysofa Tinysofa Enterprise Server 1.0 * * * * * * * � � � � 2.3 Application Tinysofa Tinysofa Enterprise Server 1.0_u1 * * * * * * * � � � � -
OR - Configuration 2
Cpe Version Part Vendor Product Version Update Edition Language SW Edition Target SW Target HW Other Version Start Including Version End Including Version Start Excluding Version End Excluding 2.3 OS Gentoo Linux 1.4 * * * * * * * � � � � 2.3 OS Mandrakesoft Mandrake Linux 9.1 * * * * * * * � � � � 2.3 OS Mandrakesoft Mandrake Linux 9.1 * ppc * * * * * � � � � 2.3 OS Mandrakesoft Mandrake Linux 9.2 * * * * * * * � � � � 2.3 OS Mandrakesoft Mandrake Linux 9.2 * amd64 * * * * * � � � � 2.3 OS Mandrakesoft Mandrake Linux 10.0 * * * * * * * � � � � 2.3 OS Mandrakesoft Mandrake Linux 10.0 * amd64 * * * * * � � � � 2.3 OS Mandrakesoft Mandrake Linux Corporate Server 2.1 * * * * * * * � � � � 2.3 OS Mandrakesoft Mandrake Linux Corporate Server 2.1 * x86_64 * * * * * � � � � 2.3 OS Openbsd Openbsd 3.4 * * * * * * * � � � � 2.3 OS Openbsd Openbsd 3.5 * * * * * * * � � � � 2.3 OS Openbsd Openbsd current * * * * * * * � � � � 2.3 OS Trustix Secure Linux 1.5 * * * * * * * � � � � 2.3 OS Trustix Secure Linux 2.0 * * * * * * * � � � � 2.3 OS Trustix Secure Linux 2.1 * * * * * * * � � � �
Vulnerable Software List
| Vendor | Product | Versions |
|---|---|---|
| Tinysofa | Tinysofa Enterprise Server | 1.0, 1.0_u1 |
| Mod Ssl | Mod Ssl | 2.8.10, 2.8.12, 2.8.15, 2.8.16, 2.8.7 |
| Openbsd | Openbsd | 3.4, 3.5, current |
| Apache | Http Server | 1.3, 1.3.1, 1.3.11, 1.3.12, 1.3.14, 1.3.17, 1.3.18, 1.3.19, 1.3.20, 1.3.22, 1.3.23, 1.3.24, 1.3.25, 1.3.26, 1.3.27, 1.3.28, 1.3.29, 1.3.3, 1.3.31, 1.3.4, 1.3.6, 1.3.7, 1.3.9, 2.0, 2.0.28, 2.0.32, 2.0.35, 2.0.36, 2.0.37, 2.0.38, 2.0.39, 2.0.40, 2.0.41, 2.0.42, 2.0.43, 2.0.44, 2.0.45, 2.0.46, 2.0.47, 2.0.48, 2.0.49, 2.0.9 |
| Mandrakesoft | Mandrake Multi Network Firewall | 8.2 |
| Mandrakesoft | Mandrake Linux | 10.0, 9.1, 9.2 |
| Mandrakesoft | Mandrake Linux Corporate Server | 2.1 |
| Sgi | Propack | 2.4 |
| Trustix | Secure Linux | 1.5, 2.0, 2.1 |
| Gentoo | Linux | 1.4 |
References
| Name | Source | URL | Tags |
|---|---|---|---|
| 20040605-01-U | ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc | SGI | |
| 20040517 mod_ssl ssl_util_uuencode_binary potential problem | http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021610.html | FULLDISC | |
| 20040527 [OpenPKG-SA-2004.026] OpenPKG Security Advisory (apache) | http://marc.info/?l=bugtraq&m=108567431823750&w=2 | BUGTRAQ | |
| 20040601 TSSA-2004-008 - apache | http://marc.info/?l=bugtraq&m=108619129727620&w=2 | BUGTRAQ | |
| SSRT4777 | http://marc.info/?l=bugtraq&m=109181600614477&w=2 | HP | |
| SSRT4788 | http://marc.info/?l=bugtraq&m=109215056218824&w=2 | HP | |
| RHSA-2004:245 | http://rhn.redhat.com/errata/RHSA-2004-245.html | REDHAT | |
| GLSA-200406-05 | http://security.gentoo.org/glsa/glsa-200406-05.xml | GENTOO | |
| DSA-532 | http://www.debian.org/security/2004/dsa-532 | DEBIAN | |
| MDKSA-2004:054 | http://www.mandriva.com/security/advisories?name=MDKSA-2004:054 | MANDRAKE | |
| MDKSA-2004:055 | http://www.mandriva.com/security/advisories?name=MDKSA-2004:055 | MANDRAKE | |
| RHSA-2004:342 | http://www.redhat.com/support/errata/RHSA-2004-342.html | REDHAT | |
| RHSA-2004:405 | http://www.redhat.com/support/errata/RHSA-2004-405.html | REDHAT | |
| RHSA-2005:816 | http://www.redhat.com/support/errata/RHSA-2005-816.html | REDHAT | |
| 10355 | http://www.securityfocus.com/bid/10355 | BID | PATCH Vendor Advisory |
| 2004-0031 | http://www.trustix.net/errata/2004/0031/ | TRUSTIX | |
| FLSA:1888 | https://bugzilla.fedora.us/show_bug.cgi?id=1888 | FEDORA | |
| apache-modssl-uuencode-bo(16214) | https://exchange.xforce.ibmcloud.com/vulnerabilities/16214 | XF | |
| [httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html | https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs | MLIST | |
| [httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html | https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs | MLIST | |
| [httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html | https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccv | MLIST | |
| [httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html | https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccv | MLIST | |
| oval:org.mitre.oval:def:11458 | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11458 | OVAL |