Vulnerability Details

ID: CVE-2003-0542

Last Modified: June 6, 2021

Open in new window

Description

Multiple stack-based buffer overflows in (1) mod_alias and (2) mod_rewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service (crash) or execute arbitrary code via a regular expression with more than 9 captures.

CVSS V2

Access Vector: Local

Access Complexity: Low

Authentication: None

Confidentiality Impact: Complete

Integrity Impact: Complete

Availability Impact: Complete

Base Score: 7.2

Exploitability Score: 3.9

Impact Score: 10.0

CVSS V2: AV:L/AC:L/Au:N/C:C/I:C/A:C

Specialize CVSS-Score

CWE-ID

CWE-119

Configuration

Condition		Configuration
OR
OR
	cpe:2.3:a:apache:http_server:2.0.42:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.42	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.23:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.23	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.47:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.47	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.27:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.27	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.35:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.35	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.37:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.37	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.44:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.44	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.1:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.1	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.25:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.25	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.12:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.12	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.24:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.24	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.26:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.26	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.17:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.17	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.18:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.18	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.28:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.28	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.32:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.32	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.6:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.6	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.9:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.9	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.38:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.38	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.39:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.39	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.41:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.41	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3:::::::* Part: a Product: http_server Vendor: apache Version: 1.3	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.19:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.19	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.20:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.20	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.3:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.3	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.4:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.4	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.45:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.45	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.14:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.14	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0:::::::* Part: a Product: http_server Vendor: apache Version: 2.0	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.43:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.43	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.11:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.11	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:1.3.22:::::::* Part: a Product: http_server Vendor: apache Version: 1.3.22	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.46:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.46	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.28:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.28	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.40:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.40	Alle Schwachstellen für apache
	cpe:2.3:a:apache:http_server:2.0.36:::::::* Part: a Product: http_server Vendor: apache Version: 2.0.36	Alle Schwachstellen für apache

Pre-Condition

                    <?xml version="1.0" ?>
<set operator="and">
    <set operator="or">
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.42:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.23:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.47:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.27:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.35:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.37:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.44:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.1:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.25:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.12:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.24:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.26:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.17:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.18:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.28:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.32:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.6:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.9:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.38:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.39:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.41:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.19:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.20:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.3:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.4:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.45:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.14:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.43:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.11:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:1.3.22:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.46:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.28:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.40:*:*:*:*:*:*:*"/>
        <prop key="application" value="cpe:2.3:a:apache:http_server:2.0.36:*:*:*:*:*:*:*"/>
    </set>
    <prop key="program_influence" value="input"/>
    <prop key="range" value="local"/>
</set>

Post-Condition

                      <?xml version="1.0" ?>
<set operator="and">
    <prop key="target" value="host"/>
    <set operator="or">
        <prop key="program_influence" value="input"/>
        <prop key="program_influence" value="output"/>
        <prop key="program_influence" value="existence"/>
    </set>
    <prop key="data" value="any"/>
    <set operator="or">
        <prop key="data_influence" value="read"/>
        <prop key="data_influence" value="write"/>
        <prop key="data_influence" value="delete"/>
    </set>
    <set operator="or">
        <prop key="range" value="local"/>
        <prop key="range" value="local"/>
    </set>
</set>