Vulnerability in N/a
CVE-2003-0245
Vulnerability in the apr_psprintf function in the Apache Portable Runtime (APR) library for Apache 2.0.37 through 2.0.45 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long strings, as…
EPSS: 0.841 (99.3th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- www.apache.org/dist/httpd/Announcement2.html (x_refsource_CONFIRM)
- 20030530 iDEFENSE Security Advisory 05.30.03: Apache Portable Runtime Denial of Service and Arbitrary Code Execution Vulnerability (mailing-list, x_refsource_VULNWATCH)
- RHSA-2003:186 (x_refsource_REDHAT, vendor-advisory)
- CLA-2003:661 (vendor-advisory, x_refsource_CONECTIVA)
- 20030528 [SECURITY] [ANNOUNCE] Apache 2.0.46 released (mailing-list, x_refsource_BUGTRAQ)
- www.idefense.com/advisory/05.30.03.txt (x_refsource_MISC)
- MDKSA-2003:063 (vendor-advisory, x_refsource_MANDRAKE)
- VU#757612 (x_refsource_CERT-VN, third-party-advisory)
- 7723 (vdb-entry, x_refsource_BID)
- apache-aprpsprintf-code-execution(12090) (vdb-entry, x_refsource_XF)