cbcvebase.
CVE-2003-0843
published 2003-11-17

CVE-2003-0843: Format string vulnerability in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode and using…

PriorityP432high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.27%
80.8th percentile
Format string vulnerability in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode and using the Apache log, allows remote attackers to execute arbitrary code via format string characters in an HTTP GET request with an "Accept-Encoding: gzip" header.

Affected

1 ranges
VendorProductVersion rangeFixed in
dag_apt_repositorymod_gzip<= 1.3.26.1a
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.