CVE-2004-0493

Published Aug 6, 2004

Last updated a year ago

CVSS info 6.4

Overview

Description: The ap_get_mime_headers_core function in Apache httpd 2.0.49 allows remote attackers to cause a denial of service (memory exhaustion), and possibly an integer signedness error leading to a heap-based buffer overflow on 64 bit systems, via long header lines with large numbers of space or tab characters.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.4
Impact score: 4.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Vendor comments

ApacheFixed in Apache HTTP Server 2.0.50: http://httpd.apache.org/security/vulnerabilities_20.html

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:avaya:converged_communications_server:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E586558A-ABC3-42EB-8B4D-DC92A0D695E6"
          },
          {
            "criteria": "cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65ED9D8C-604D-4B0B-A192-C0DA4D2E9AEB"
          },
          {
            "criteria": "cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "39605B96-BAD6-45C9-BB9A-43D6E2C51ADD"
          },
          {
            "criteria": "cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53AF1A2D-B0A2-4097-AD1D-DF3AF27171BA"
          },
          {
            "criteria": "cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A67735E5-E43E-4164-BDB2-ADC6E0288E9F"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:apache:http_server:2.0.47:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFE732B5-00C9-4443-97E0-1DF21475C26B"
          },
          {
            "criteria": "cpe:2.3:a:apache:http_server:2.0.48:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C79C41D3-6894-4F2D-B8F8-82AB4780A824"
          },
          {
            "criteria": "cpe:2.3:a:apache:http_server:2.0.49:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "449A5647-CEA6-4314-9DB8-D086F388E1C7"
          },
          {
            "criteria": "cpe:2.3:a:ibm:http_server:2.0.42:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4BBE18AC-99F8-4D82-8724-B99E82F6892E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:http_server:2.0.42.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB9075EC-9B80-45F8-AEDF-04A8C49C7C74"
          },
          {
            "criteria": "cpe:2.3:a:ibm:http_server:2.0.42.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F49DC1E-B67A-46CB-83B1-24FAFBDBE9E6"
          },
          {
            "criteria": "cpe:2.3:a:ibm:http_server:2.0.47:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9674B2D8-8235-4AB1-AB6D-285704774EEB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:http_server:2.0.47.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8673FFC4-36B3-4E61-8007-099E9568ECCA"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8300:r2.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20C0BD87-CE4B-49D2-89BE-EF282C43AD72"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8500:r2.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE76357A-27E6-4D85-9AA0-1BB658C41568"
          },
          {
            "criteria": "cpe:2.3:h:avaya:s8700:r2.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AEF6C16F-8EDF-4A24-BFEF-6A304D654EEB"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Vendor comments

Configurations

References