Dag Apt Repository Mod Gzip vulnerabilities
2 known vulnerabilities affecting dag_apt_repository/mod_gzip.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2003-0842P3HIGHCVSS 7.5PoCv1.3.26.1a2003-11-17
CVE-2003-0842 [HIGH] CVE-2003-0842: Stack-based buffer overflow in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly late
Stack-based buffer overflow in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode, allows remote attackers to execute arbitrary code via a long filename in a GET request with an "Accept-Encoding: gzip" header.
nvd
CVE-2003-0843P4HIGHCVSS 7.5≤ 1.3.26.1a2003-11-17
CVE-2003-0843 [HIGH] CVE-2003-0843: Format string vulnerability in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly late
Format string vulnerability in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode and using the Apache log, allows remote attackers to execute arbitrary code via format string characters in an HTTP GET request with an "Accept-Encoding: gzip" header.
nvd