You are here

CVE-2004-0488

Vincent (CVE) Danen's picture
Stack-based buffer overflow in the ssl_util_uuencode_binary function in ssl_util.c for Apache mod_ssl, when mod_ssl is configured to trust the issuing CA, may allow remote attackers to execute arbitrary code via a client certificate with a long subject DN.

Details Source

Mitre

Public Date

2004-05-17 00:00:00

Impact

Moderate

Bugzilla

CVE-2004-0488 mod_ssl ssl_util_uuencode_binary CA issue

Bugzilla ID

430 867

CVSS Status

draft

Red Hat Security Errata

Platform Errata Release Date
Red Hat Satellite Proxy v 4.2 (RHEL v.4 AS) RHSA-2008:0523 2008-06-30
Red Hat Enterprise Linux 2.1 RHSA-2004:245 2004-06-14
Stronghold 4 for Red Hat Enterprise Linux RHSA-2005:816 2005-11-02
Red Hat Enterprise Linux 3 (httpd) RHSA-2004:342 2004-07-06
Red Hat Satellite Proxy v 4.2 (RHEL v.3 AS) RHSA-2008:0523 2008-06-30
Red Hat Stronghold 4 RHSA-2004:405 2004-07-23