cbcvebase.
CVE-2004-0700
published 2004-07-27

CVE-2004-0700: Format string vulnerability in the mod_proxy hook functions function in ssl_engine_log.c in mod_ssl before 2.8.19 for Apache before 1.3.31 may allow remote…

PriorityP336high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
5.80%
92.2th percentile
Format string vulnerability in the mod_proxy hook functions function in ssl_engine_log.c in mod_ssl before 2.8.19 for Apache before 1.3.31 may allow remote attackers to execute arbitrary messages via format string specifiers in certain log messages for HTTPS that are handled by the ssl_log function.

Affected

44 ranges· showing 25
VendorProductVersion rangeFixed in
gentoolinux
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl
mod_sslmod_ssl

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.