Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2003-0542

Multiple stack-based buffer overflows in (1) mod_alias and (2) mod_rewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service (crash) or execute arbitrary code via a regular expression with more than 9 captures.

  • Published: Nov 3, 2003
  • Updated: Apr 13, 2023
  • CVE: CVE-2003-0542
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
apache / http_server 2.0.42 2.0.42.x
apache / http_server 1.3.23 1.3.23.x
apache / http_server 2.0.47 2.0.47.x
apache / http_server 1.3.27 1.3.27.x
apache / http_server 2.0.35 2.0.35.x
apache / http_server 2.0.37 2.0.37.x
apache / http_server 2.0.44 2.0.44.x
apache / http_server 1.3.1 1.3.1.x
apache / http_server 1.3.25 1.3.25.x
apache / http_server 1.3.12 1.3.12.x
apache / http_server 1.3.24 1.3.24.x
apache / http_server 1.3.26 1.3.26.x
apache / http_server 1.3.17 1.3.17.x
apache / http_server 1.3.18 1.3.18.x
apache / http_server 1.3.28 1.3.28.x
apache / http_server 2.0.32 2.0.32.x
apache / http_server 1.3.6 1.3.6.x
apache / http_server 1.3.9 1.3.9.x
apache / http_server 2.0.38 2.0.38.x
apache / http_server 2.0.39 2.0.39.x
apache / http_server 2.0.41 2.0.41.x
apache / http_server 1.3 1.3.x
apache / http_server 1.3.19 1.3.19.x
apache / http_server 1.3.20 1.3.20.x
apache / http_server 1.3.3 1.3.3.x
apache / http_server 1.3.4 1.3.4.x
apache / http_server 2.0.45 2.0.45.x
apache / http_server 1.3.14 1.3.14.x
apache / http_server 2.0 2.0.x
apache / http_server 2.0.43 2.0.43.x
apache / http_server 1.3.11 1.3.11.x
apache / http_server 1.3.22 1.3.22.x
apache / http_server 2.0.46 2.0.46.x
apache / http_server 2.0.28 2.0.28.x
apache / http_server 2.0.40 2.0.40.x
apache / http_server 2.0.36 2.0.36.x