Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2004-0747 (GCVE-0-2004-0747)
Vulnerability from cvelistv5 – Published: 2004-09-17 04:00 – Updated: 2025-01-16 17:47
VLAI
EPSS
Summary
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.
Severity
7.8 (High)
CWE
- n/a
Assigner
References
26 references
Date Public
2004-09-15 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T00:31:46.612Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "SUSE-SA:2004:032",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://www.novell.com/linux/security/advisories/2004_32_apache2.html"
},
{
"name": "RHSA-2004:463",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2004-463.html"
},
{
"name": "apache-env-configuration-bo(17384)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17384"
},
{
"name": "ADV-2009-1233",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2009/1233"
},
{
"name": "12540",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/12540"
},
{
"name": "oval:org.mitre.oval:def:11561",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561"
},
{
"name": "34920",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/34920"
},
{
"name": "2004-0047",
"tags": [
"vendor-advisory",
"x_refsource_TRUSTIX",
"x_transferred"
],
"url": "http://www.trustix.org/errata/2004/0047/"
},
{
"name": "MDKSA-2004:096",
"tags": [
"vendor-advisory",
"x_refsource_MANDRAKE",
"x_transferred"
],
"url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147"
},
{
"name": "GLSA-200409-21",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml"
},
{
"name": "VU#481998",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/481998"
},
{
"name": "1011303",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://securitytracker.com/id?1011303"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [3/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [3/13] - /httpd/site/trunk/content/security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [4/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210422 svn commit: r1074079 [2/3] - in /websites/staging/httpd/trunk/content: ./ apreq/ contribute/ contributors/ dev/ docs-project/ docs/ info/ mod_fcgid/ mod_ftp/ mod_mbox/ mod_smtpd/ modules/ security/ test/ test/flood/",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2004-0747",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-02-05T21:31:51.729461Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-131",
"description": "CWE-131 Incorrect Calculation of Buffer Size",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-01-16T17:47:15.175Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2004-09-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-06-06T10:08:59.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "SUSE-SA:2004:032",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://www.novell.com/linux/security/advisories/2004_32_apache2.html"
},
{
"name": "RHSA-2004:463",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2004-463.html"
},
{
"name": "apache-env-configuration-bo(17384)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17384"
},
{
"name": "ADV-2009-1233",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2009/1233"
},
{
"name": "12540",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/12540"
},
{
"name": "oval:org.mitre.oval:def:11561",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561"
},
{
"name": "34920",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/34920"
},
{
"name": "2004-0047",
"tags": [
"vendor-advisory",
"x_refsource_TRUSTIX"
],
"url": "http://www.trustix.org/errata/2004/0047/"
},
{
"name": "MDKSA-2004:096",
"tags": [
"vendor-advisory",
"x_refsource_MANDRAKE"
],
"url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147"
},
{
"name": "GLSA-200409-21",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml"
},
{
"name": "VU#481998",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/481998"
},
{
"name": "1011303",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://securitytracker.com/id?1011303"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [3/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [3/13] - /httpd/site/trunk/content/security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [4/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210422 svn commit: r1074079 [2/3] - in /websites/staging/httpd/trunk/content: ./ apreq/ contribute/ contributors/ dev/ docs-project/ docs/ info/ mod_fcgid/ mod_ftp/ mod_mbox/ mod_smtpd/ modules/ security/ test/ test/flood/",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2004-0747",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "SUSE-SA:2004:032",
"refsource": "SUSE",
"url": "http://www.novell.com/linux/security/advisories/2004_32_apache2.html"
},
{
"name": "RHSA-2004:463",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2004-463.html"
},
{
"name": "apache-env-configuration-bo(17384)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17384"
},
{
"name": "ADV-2009-1233",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/1233"
},
{
"name": "12540",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/12540"
},
{
"name": "oval:org.mitre.oval:def:11561",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561"
},
{
"name": "34920",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/34920"
},
{
"name": "2004-0047",
"refsource": "TRUSTIX",
"url": "http://www.trustix.org/errata/2004/0047/"
},
{
"name": "MDKSA-2004:096",
"refsource": "MANDRAKE",
"url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096"
},
{
"name": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147",
"refsource": "MISC",
"url": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147"
},
{
"name": "GLSA-200409-21",
"refsource": "GENTOO",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml"
},
{
"name": "VU#481998",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/481998"
},
{
"name": "1011303",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1011303"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [3/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [3/13] - /httpd/site/trunk/content/security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [4/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210422 svn commit: r1074079 [2/3] - in /websites/staging/httpd/trunk/content: ./ apreq/ contribute/ contributors/ dev/ docs-project/ docs/ info/ mod_fcgid/ mod_ftp/ mod_mbox/ mod_smtpd/ modules/ security/ test/ test/flood/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6@%3Ccvs.httpd.apache.org%3E"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2004-0747",
"datePublished": "2004-09-17T04:00:00.000Z",
"dateReserved": "2004-07-26T00:00:00.000Z",
"dateUpdated": "2025-01-16T17:47:15.175Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2004-0747",
"date": "2026-05-30",
"epss": "0.01387",
"percentile": "0.80645"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.0.35\", \"versionEndExcluding\": \"2.0.51\", \"matchCriteriaId\": \"A5A9EAAF-A5F4-493E-9530-8A448E55CDCC\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer en Apache 2.0.50 y anteriores permite a usuarios locales ganar privilegios mediante un fichero .htaccess que causa un desbordamiento durante la expansi\\u00f3n de variables de entorno.\"}]",
"id": "CVE-2004-0747",
"lastModified": "2024-11-20T23:49:18.687",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 4.6, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.9, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": true, \"userInteractionRequired\": false}]}",
"published": "2004-10-20T04:00:00.000",
"references": "[{\"url\": \"http://secunia.com/advisories/12540\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\", \"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/34920\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\", \"Not Applicable\"]}, {\"url\": \"http://securitytracker.com/id?1011303\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/481998\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.novell.com/linux/security/advisories/2004_32_apache2.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2004-463.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\", \"Third Party Advisory\"]}, {\"url\": \"http://www.trustix.org/errata/2004/0047/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2009/1233\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\", \"Permissions Required\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17384\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561\", \"source\": \"cve@mitre.org\", \"tags\": [\"Broken Link\", \"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/12540\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/34920\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Not Applicable\"]}, {\"url\": \"http://securitytracker.com/id?1011303\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/481998\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.novell.com/linux/security/advisories/2004_32_apache2.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2004-463.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Third Party Advisory\"]}, {\"url\": \"http://www.trustix.org/errata/2004/0047/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2009/1233\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Permissions Required\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17384\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\"]}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Third Party Advisory\"]}]",
"sourceIdentifier": "cve@mitre.org",
"vendorComments": "[{\"organization\": \"Apache\", \"comment\": \"Fixed in Apache HTTP Server 2.0.51:\\nhttp://httpd.apache.org/security/vulnerabilities_20.html\", \"lastModified\": \"2008-07-02T00:00:00\"}]",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-131\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2004-0747\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2004-10-20T04:00:00.000\",\"lastModified\":\"2026-04-16T00:27:16.627\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer en Apache 2.0.50 y anteriores permite a usuarios locales ganar privilegios mediante un fichero .htaccess que causa un desbordamiento durante la expansi\u00f3n de variables de entorno.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":4.6,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.9,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":true,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-131\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-131\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0.35\",\"versionEndExcluding\":\"2.0.51\",\"matchCriteriaId\":\"A5A9EAAF-A5F4-493E-9530-8A448E55CDCC\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/12540\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\",\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/34920\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\",\"Not Applicable\"]},{\"url\":\"http://securitytracker.com/id?1011303\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/481998\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.novell.com/linux/security/advisories/2004_32_apache2.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2004-463.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\",\"Third Party Advisory\"]},{\"url\":\"http://www.trustix.org/errata/2004/0047/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/1233\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\",\"Permissions Required\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17384\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\",\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/12540\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/34920\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Not Applicable\"]},{\"url\":\"http://securitytracker.com/id?1011303\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/481998\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.novell.com/linux/security/advisories/2004_32_apache2.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2004-463.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\"]},{\"url\":\"http://www.trustix.org/errata/2004/0047/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.vupen.com/english/advisories/2009/1233\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Permissions Required\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17384\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\"]}],\"vendorComments\":[{\"organization\":\"Apache\",\"comment\":\"Fixed in Apache HTTP Server 2.0.51:\\nhttp://httpd.apache.org/security/vulnerabilities_20.html\",\"lastModified\":\"2008-07-02T00:00:00\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://www.novell.com/linux/security/advisories/2004_32_apache2.html\", \"name\": \"SUSE-SA:2004:032\", \"tags\": [\"vendor-advisory\", \"x_refsource_SUSE\", \"x_transferred\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2004-463.html\", \"name\": \"RHSA-2004:463\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17384\", \"name\": \"apache-env-configuration-bo(17384)\", \"tags\": [\"vdb-entry\", \"x_refsource_XF\", \"x_transferred\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2009/1233\", \"name\": \"ADV-2009-1233\", \"tags\": [\"vdb-entry\", \"x_refsource_VUPEN\", \"x_transferred\"]}, {\"url\": \"http://secunia.com/advisories/12540\", \"name\": \"12540\", \"tags\": [\"third-party-advisory\", \"x_refsource_SECUNIA\", \"x_transferred\"]}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561\", \"name\": \"oval:org.mitre.oval:def:11561\", \"tags\": [\"vdb-entry\", \"signature\", \"x_refsource_OVAL\", \"x_transferred\"]}, {\"url\": \"http://secunia.com/advisories/34920\", \"name\": \"34920\", \"tags\": [\"third-party-advisory\", \"x_refsource_SECUNIA\", \"x_transferred\"]}, {\"url\": \"http://www.trustix.org/errata/2004/0047/\", \"name\": \"2004-0047\", \"tags\": [\"vendor-advisory\", \"x_refsource_TRUSTIX\", \"x_transferred\"]}, {\"url\": \"http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096\", \"name\": \"MDKSA-2004:096\", \"tags\": [\"vendor-advisory\", \"x_refsource_MANDRAKE\", \"x_transferred\"]}, {\"url\": \"http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147\", \"tags\": [\"x_refsource_MISC\", \"x_transferred\"]}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml\", \"name\": \"GLSA-200409-21\", \"tags\": [\"vendor-advisory\", \"x_refsource_GENTOO\", \"x_transferred\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/481998\", \"name\": \"VU#481998\", \"tags\": [\"third-party-advisory\", \"x_refsource_CERT-VN\", \"x_transferred\"]}, {\"url\": \"http://securitytracker.com/id?1011303\", \"name\": \"1011303\", \"tags\": [\"vdb-entry\", \"x_refsource_SECTRACK\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073139 [3/13] - in /websites/staging/httpd/trunk/content: ./ security/json/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1888194 [3/13] - /httpd/site/trunk/content/security/json/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073149 [4/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210422 svn commit: r1074079 [2/3] - in /websites/staging/httpd/trunk/content: ./ apreq/ contribute/ contributors/ dev/ docs-project/ docs/ info/ mod_fcgid/ mod_ftp/ mod_mbox/ mod_smtpd/ modules/ security/ test/ test/flood/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210606 svn commit: r1075470 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-08T00:31:46.612Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2004-0747\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-02-05T21:31:51.729461Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-131\", \"description\": \"CWE-131 Incorrect Calculation of Buffer Size\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-16T17:45:17.631Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"datePublic\": \"2004-09-15T00:00:00.000Z\", \"references\": [{\"url\": \"http://www.novell.com/linux/security/advisories/2004_32_apache2.html\", \"name\": \"SUSE-SA:2004:032\", \"tags\": [\"vendor-advisory\", \"x_refsource_SUSE\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2004-463.html\", \"name\": \"RHSA-2004:463\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17384\", \"name\": \"apache-env-configuration-bo(17384)\", \"tags\": [\"vdb-entry\", \"x_refsource_XF\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2009/1233\", \"name\": \"ADV-2009-1233\", \"tags\": [\"vdb-entry\", \"x_refsource_VUPEN\"]}, {\"url\": \"http://secunia.com/advisories/12540\", \"name\": \"12540\", \"tags\": [\"third-party-advisory\", \"x_refsource_SECUNIA\"]}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561\", \"name\": \"oval:org.mitre.oval:def:11561\", \"tags\": [\"vdb-entry\", \"signature\", \"x_refsource_OVAL\"]}, {\"url\": \"http://secunia.com/advisories/34920\", \"name\": \"34920\", \"tags\": [\"third-party-advisory\", \"x_refsource_SECUNIA\"]}, {\"url\": \"http://www.trustix.org/errata/2004/0047/\", \"name\": \"2004-0047\", \"tags\": [\"vendor-advisory\", \"x_refsource_TRUSTIX\"]}, {\"url\": \"http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096\", \"name\": \"MDKSA-2004:096\", \"tags\": [\"vendor-advisory\", \"x_refsource_MANDRAKE\"]}, {\"url\": \"http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml\", \"name\": \"GLSA-200409-21\", \"tags\": [\"vendor-advisory\", \"x_refsource_GENTOO\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/481998\", \"name\": \"VU#481998\", \"tags\": [\"third-party-advisory\", \"x_refsource_CERT-VN\"]}, {\"url\": \"http://securitytracker.com/id?1011303\", \"name\": \"1011303\", \"tags\": [\"vdb-entry\", \"x_refsource_SECTRACK\"]}, {\"url\": \"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073139 [3/13] - in /websites/staging/httpd/trunk/content: ./ security/json/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1888194 [3/13] - /httpd/site/trunk/content/security/json/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073149 [4/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210422 svn commit: r1074079 [2/3] - in /websites/staging/httpd/trunk/content: ./ apreq/ contribute/ contributors/ dev/ docs-project/ docs/ info/ mod_fcgid/ mod_ftp/ mod_mbox/ mod_smtpd/ modules/ security/ test/ test/flood/\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}, {\"url\": \"https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210606 svn commit: r1075470 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2021-06-06T10:08:59.000Z\"}, \"x_legacyV4Record\": {\"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"version\": {\"version_data\": [{\"version_value\": \"n/a\"}]}, \"product_name\": \"n/a\"}]}, \"vendor_name\": \"n/a\"}]}}, \"data_type\": \"CVE\", \"references\": {\"reference_data\": [{\"url\": \"http://www.novell.com/linux/security/advisories/2004_32_apache2.html\", \"name\": \"SUSE-SA:2004:032\", \"refsource\": \"SUSE\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2004-463.html\", \"name\": \"RHSA-2004:463\", \"refsource\": \"REDHAT\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17384\", \"name\": \"apache-env-configuration-bo(17384)\", \"refsource\": \"XF\"}, {\"url\": \"http://www.vupen.com/english/advisories/2009/1233\", \"name\": \"ADV-2009-1233\", \"refsource\": \"VUPEN\"}, {\"url\": \"http://secunia.com/advisories/12540\", \"name\": \"12540\", \"refsource\": \"SECUNIA\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561\", \"name\": \"oval:org.mitre.oval:def:11561\", \"refsource\": \"OVAL\"}, {\"url\": \"http://secunia.com/advisories/34920\", \"name\": \"34920\", \"refsource\": \"SECUNIA\"}, {\"url\": \"http://www.trustix.org/errata/2004/0047/\", \"name\": \"2004-0047\", \"refsource\": \"TRUSTIX\"}, {\"url\": \"http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096\", \"name\": \"MDKSA-2004:096\", \"refsource\": \"MANDRAKE\"}, {\"url\": \"http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147\", \"name\": \"http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147\", \"refsource\": \"MISC\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml\", \"name\": \"GLSA-200409-21\", \"refsource\": \"GENTOO\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/481998\", \"name\": \"VU#481998\", \"refsource\": \"CERT-VN\"}, {\"url\": \"http://securitytracker.com/id?1011303\", \"name\": \"1011303\", \"refsource\": \"SECTRACK\"}, {\"url\": \"https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073139 [3/13] - in /websites/staging/httpd/trunk/content: ./ security/json/\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1888194 [3/13] - /httpd/site/trunk/content/security/json/\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073149 [4/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210422 svn commit: r1074079 [2/3] - in /websites/staging/httpd/trunk/content: ./ apreq/ contribute/ contributors/ dev/ docs-project/ docs/ info/ mod_fcgid/ mod_ftp/ mod_mbox/ mod_smtpd/ modules/ security/ test/ test/flood/\", \"refsource\": \"MLIST\"}, {\"url\": \"https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6@%3Ccvs.httpd.apache.org%3E\", \"name\": \"[httpd-cvs] 20210606 svn commit: r1075470 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html\", \"refsource\": \"MLIST\"}]}, \"data_format\": \"MITRE\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"n/a\"}]}]}, \"data_version\": \"4.0\", \"CVE_data_meta\": {\"ID\": \"CVE-2004-0747\", \"STATE\": \"PUBLIC\", \"ASSIGNER\": \"cve@mitre.org\"}}}}",
"cveMetadata": "{\"cveId\": \"CVE-2004-0747\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-16T17:47:15.175Z\", \"dateReserved\": \"2004-07-26T00:00:00.000Z\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2004-09-17T04:00:00.000Z\", \"assignerShortName\": \"mitre\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTA-2009-AVI-171
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités dans CA ARCserve Backup permettent de réaliser un déni de service à distance et d'élever les privilèges.
Description
CA ARCserve Backup pour Solaris, Tru64, HP-UX et AIX est livré avec une version d'Apache qui contient de nombreuses vulnérabilités. L'exploitation de celles-ci permet une élévation de privilèges ou la réalisation d'un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
CA ARCserve Backup r11.5 pour Solaris, Tru64, HP-UX et AIX.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003e\u003cSPAN class=\"textit\"\u003eCA ARCserve Backup\u003c/SPAN\u003e r11.5 pour Solaris, Tru64, HP-UX et AIX.\u003c/P\u003e",
"content": "## Description\n\nCA ARCserve Backup pour Solaris, Tru64, HP-UX et AIX est livr\u00e9 avec une\nversion d\u0027Apache qui contient de nombreuses vuln\u00e9rabilit\u00e9s.\nL\u0027exploitation de celles-ci permet une \u00e9l\u00e9vation de privil\u00e8ges ou la\nr\u00e9alisation d\u0027un d\u00e9ni de service \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2004-0747",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-0747"
},
{
"name": "CVE-2003-0132",
"url": "https://www.cve.org/CVERecord?id=CVE-2003-0132"
}
],
"links": [],
"reference": "CERTA-2009-AVI-171",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2009-05-05T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s dans \u003cspan class=\"textit\"\u003eCA ARCserve\nBackup\u003c/span\u003e permettent de r\u00e9aliser un d\u00e9ni de service \u00e0 distance et\nd\u0027\u00e9lever les privil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans CA ARCserve Backup",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 CA20090429-01 du 29 avril 2009",
"url": "https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147"
}
]
}
CERTA-2009-AVI-171
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités dans CA ARCserve Backup permettent de réaliser un déni de service à distance et d'élever les privilèges.
Description
CA ARCserve Backup pour Solaris, Tru64, HP-UX et AIX est livré avec une version d'Apache qui contient de nombreuses vulnérabilités. L'exploitation de celles-ci permet une élévation de privilèges ou la réalisation d'un déni de service à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
CA ARCserve Backup r11.5 pour Solaris, Tru64, HP-UX et AIX.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003e\u003cSPAN class=\"textit\"\u003eCA ARCserve Backup\u003c/SPAN\u003e r11.5 pour Solaris, Tru64, HP-UX et AIX.\u003c/P\u003e",
"content": "## Description\n\nCA ARCserve Backup pour Solaris, Tru64, HP-UX et AIX est livr\u00e9 avec une\nversion d\u0027Apache qui contient de nombreuses vuln\u00e9rabilit\u00e9s.\nL\u0027exploitation de celles-ci permet une \u00e9l\u00e9vation de privil\u00e8ges ou la\nr\u00e9alisation d\u0027un d\u00e9ni de service \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2004-0747",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-0747"
},
{
"name": "CVE-2003-0132",
"url": "https://www.cve.org/CVERecord?id=CVE-2003-0132"
}
],
"links": [],
"reference": "CERTA-2009-AVI-171",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2009-05-05T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s dans \u003cspan class=\"textit\"\u003eCA ARCserve\nBackup\u003c/span\u003e permettent de r\u00e9aliser un d\u00e9ni de service \u00e0 distance et\nd\u0027\u00e9lever les privil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans CA ARCserve Backup",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 CA20090429-01 du 29 avril 2009",
"url": "https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147"
}
]
}
FKIE_CVE-2004-0747
Vulnerability from fkie_nvd - Published: 2004-10-20 04:00 - Updated: 2026-04-16 00:27
Severity
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| apache | http_server | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A5A9EAAF-A5F4-493E-9530-8A448E55CDCC",
"versionEndExcluding": "2.0.51",
"versionStartIncluding": "2.0.35",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables."
},
{
"lang": "es",
"value": "Desbordamiento de b\u00fafer en Apache 2.0.50 y anteriores permite a usuarios locales ganar privilegios mediante un fichero .htaccess que causa un desbordamiento durante la expansi\u00f3n de variables de entorno."
}
],
"id": "CVE-2004-0747",
"lastModified": "2026-04-16T00:27:16.627",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": true,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2004-10-20T04:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Not Applicable"
],
"url": "http://secunia.com/advisories/12540"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Not Applicable"
],
"url": "http://secunia.com/advisories/34920"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://securitytracker.com/id?1011303"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/481998"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.novell.com/linux/security/advisories/2004_32_apache2.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2004-463.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.trustix.org/errata/2004/0047/"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Permissions Required"
],
"url": "http://www.vupen.com/english/advisories/2009/1233"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17384"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Not Applicable"
],
"url": "http://secunia.com/advisories/12540"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Not Applicable"
],
"url": "http://secunia.com/advisories/34920"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://securitytracker.com/id?1011303"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/481998"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.novell.com/linux/security/advisories/2004_32_apache2.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2004-463.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
],
"url": "http://www.trustix.org/errata/2004/0047/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Permissions Required"
],
"url": "http://www.vupen.com/english/advisories/2009/1233"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17384"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link",
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561"
}
],
"sourceIdentifier": "cve@mitre.org",
"vendorComments": [
{
"comment": "Fixed in Apache HTTP Server 2.0.51:\nhttp://httpd.apache.org/security/vulnerabilities_20.html",
"lastModified": "2008-07-02T00:00:00",
"organization": "Apache"
}
],
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-131"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-131"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
GHSA-9Q6C-GRQ3-7PRG
Vulnerability from github – Published: 2022-04-29 02:58 – Updated: 2025-01-16 18:30
VLAI
Details
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.
Severity
7.8 (High)
{
"affected": [],
"aliases": [
"CVE-2004-0747"
],
"database_specific": {
"cwe_ids": [
"CWE-120",
"CWE-131"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2004-10-20T04:00:00Z",
"severity": "MODERATE"
},
"details": "Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.",
"id": "GHSA-9q6c-grq3-7prg",
"modified": "2025-01-16T18:30:56Z",
"published": "2022-04-29T02:58:17Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0747"
},
{
"type": "WEB",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"type": "WEB",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17384"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/12540"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/34920"
},
{
"type": "WEB",
"url": "http://securitytracker.com/id?1011303"
},
{
"type": "WEB",
"url": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147"
},
{
"type": "WEB",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml"
},
{
"type": "WEB",
"url": "http://www.kb.cert.org/vuls/id/481998"
},
{
"type": "WEB",
"url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096"
},
{
"type": "WEB",
"url": "http://www.novell.com/linux/security/advisories/2004_32_apache2.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2004-463.html"
},
{
"type": "WEB",
"url": "http://www.trustix.org/errata/2004/0047"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2009/1233"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2004-0747
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2004-0747",
"description": "Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.",
"id": "GSD-2004-0747",
"references": [
"https://www.suse.com/security/cve/CVE-2004-0747.html",
"https://access.redhat.com/errata/RHSA-2004:463"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2004-0747"
],
"details": "Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.",
"id": "GSD-2004-0747",
"modified": "2023-12-13T01:22:54.723737Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2004-0747",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "SUSE-SA:2004:032",
"refsource": "SUSE",
"url": "http://www.novell.com/linux/security/advisories/2004_32_apache2.html"
},
{
"name": "RHSA-2004:463",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2004-463.html"
},
{
"name": "apache-env-configuration-bo(17384)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17384"
},
{
"name": "ADV-2009-1233",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/1233"
},
{
"name": "12540",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/12540"
},
{
"name": "oval:org.mitre.oval:def:11561",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561"
},
{
"name": "34920",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/34920"
},
{
"name": "2004-0047",
"refsource": "TRUSTIX",
"url": "http://www.trustix.org/errata/2004/0047/"
},
{
"name": "MDKSA-2004:096",
"refsource": "MANDRAKE",
"url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096"
},
{
"name": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147",
"refsource": "MISC",
"url": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147"
},
{
"name": "GLSA-200409-21",
"refsource": "GENTOO",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml"
},
{
"name": "VU#481998",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/481998"
},
{
"name": "1011303",
"refsource": "SECTRACK",
"url": "http://securitytracker.com/id?1011303"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073139 [3/13] - in /websites/staging/httpd/trunk/content: ./ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1888194 [3/13] - /httpd/site/trunk/content/security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [4/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210422 svn commit: r1074079 [2/3] - in /websites/staging/httpd/trunk/content: ./ apreq/ contribute/ contributors/ dev/ docs-project/ docs/ info/ mod_fcgid/ mod_ftp/ mod_mbox/ mod_smtpd/ modules/ security/ test/ test/flood/",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165@%3Ccvs.httpd.apache.org%3E"
},
{
"name": "[httpd-cvs] 20210606 svn commit: r1075470 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6@%3Ccvs.httpd.apache.org%3E"
}
]
}
},
"nvd.nist.gov": {
"cve": {
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A5A9EAAF-A5F4-493E-9530-8A448E55CDCC",
"versionEndExcluding": "2.0.51",
"versionStartIncluding": "2.0.35",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables."
},
{
"lang": "es",
"value": "Desbordamiento de b\u00fafer en Apache 2.0.50 y anteriores permite a usuarios locales ganar privilegios mediante un fichero .htaccess que causa un desbordamiento durante la expansi\u00f3n de variables de entorno."
}
],
"id": "CVE-2004-0747",
"lastModified": "2024-02-02T14:03:04.023",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": true,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2004-10-20T04:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Not Applicable"
],
"url": "http://secunia.com/advisories/12540"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Not Applicable"
],
"url": "http://secunia.com/advisories/34920"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Third Party Advisory",
"VDB Entry"
],
"url": "http://securitytracker.com/id?1011303"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=205147"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200409-21.xml"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/481998"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:096"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.novell.com/linux/security/advisories/2004_32_apache2.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Third Party Advisory"
],
"url": "http://www.redhat.com/support/errata/RHSA-2004-463.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link"
],
"url": "http://www.trustix.org/errata/2004/0047/"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Permissions Required"
],
"url": "http://www.vupen.com/english/advisories/2009/1233"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17384"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r734a07156abf332d5ab27fb91d9d962cacfef4f3681e44056f064fa8%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r8c9983f1172a3415f915ddb7e14de632d2d0c326eb1285755a024165%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Patch"
],
"url": "https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
},
{
"source": "cve@mitre.org",
"tags": [
"Broken Link",
"Third Party Advisory"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11561"
}
],
"sourceIdentifier": "cve@mitre.org",
"vendorComments": [
{
"comment": "Fixed in Apache HTTP Server 2.0.51:\nhttp://httpd.apache.org/security/vulnerabilities_20.html",
"lastModified": "2008-07-02T00:00:00",
"organization": "Apache"
}
],
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-131"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
}
}
}
RHSA-2004:463
Vulnerability from csaf_redhat - Published: 2004-09-15 15:20 - Updated: 2025-11-21 17:27Summary
Red Hat Security Advisory: httpd security update
Severity
Moderate
Notes
Topic: Updated httpd packages that include fixes for security issues are now
available.
Details: The Apache HTTP server is a powerful, full-featured, efficient, and
freely-available Web server.
Four issues have been discovered affecting releases of the Apache HTTP 2.0
Server, up to and including version 2.0.50:
Testing using the Codenomicon HTTP Test Tool performed by the Apache
Software Foundation security group and Red Hat uncovered an input
validation issue in the IPv6 URI parsing routines in the apr-util library.
If a remote attacker sent a request including a carefully crafted URI, an
httpd child process could be made to crash. This issue is not believed to
allow arbitrary code execution on Red Hat Enterprise Linux. This issue
also does not represent a significant denial of service attack as requests
will continue to be handled by other Apache child processes. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2004-0786 to this issue.
The Swedish IT Incident Centre (SITIC) reported a buffer overflow in the
expansion of environment variables during configuration file parsing. This
issue could allow a local user to gain 'apache' privileges if an httpd
process can be forced to parse a carefully crafted .htaccess file written
by a local user. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0747 to this issue.
An issue was discovered in the mod_ssl module which could be triggered if
the server is configured to allow proxying to a remote SSL server. A
malicious remote SSL server could force an httpd child process to crash by
sending a carefully crafted response header. This issue is not believed to
allow execution of arbitrary code. This issue also does not represent a
significant Denial of Service attack as requests will continue to be
handled by other Apache child processes. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2004-0751 to
this issue.
An issue was discovered in the mod_dav module which could be triggered for
a location where WebDAV authoring access has been configured. A malicious
remote client which is authorized to use the LOCK method could force an
httpd child process to crash by sending a particular sequence of LOCK
requests. This issue does not allow execution of arbitrary code. This
issue also does not represent a significant Denial of Service attack as
requests will continue to be handled by other Apache child processes. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the name CAN-2004-0809 to this issue.
Users of the Apache HTTP server should upgrade to these updated packages,
which contain backported patches that address these issues.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.
Affected products
Fixed
100 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
The char_buffer_read function in the mod_ssl module for Apache 2.x, when using reverse proxying to an SSL server, allows remote attackers to cause a denial of service (segmentation fault).
Affected products
Fixed
100 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
The IPv6 URI parsing routines in the apr-util library for Apache 2.0.50 and earlier allow remote attackers to cause a denial of service (child process crash) via a certain URI, as demonstrated using the Codenomicon HTTP Test Tool.
Affected products
Fixed
100 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.
Affected products
Fixed
100 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
References
22 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd packages that include fixes for security issues are now\navailable.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP server is a powerful, full-featured, efficient, and\nfreely-available Web server.\n\nFour issues have been discovered affecting releases of the Apache HTTP 2.0\nServer, up to and including version 2.0.50:\n\nTesting using the Codenomicon HTTP Test Tool performed by the Apache\nSoftware Foundation security group and Red Hat uncovered an input\nvalidation issue in the IPv6 URI parsing routines in the apr-util library. \nIf a remote attacker sent a request including a carefully crafted URI, an\nhttpd child process could be made to crash. This issue is not believed to\nallow arbitrary code execution on Red Hat Enterprise Linux. This issue\nalso does not represent a significant denial of service attack as requests\nwill continue to be handled by other Apache child processes. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2004-0786 to this issue.\n\nThe Swedish IT Incident Centre (SITIC) reported a buffer overflow in the\nexpansion of environment variables during configuration file parsing. This\nissue could allow a local user to gain \u0027apache\u0027 privileges if an httpd\nprocess can be forced to parse a carefully crafted .htaccess file written\nby a local user. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CAN-2004-0747 to this issue.\n\nAn issue was discovered in the mod_ssl module which could be triggered if\nthe server is configured to allow proxying to a remote SSL server. A\nmalicious remote SSL server could force an httpd child process to crash by\nsending a carefully crafted response header. This issue is not believed to\nallow execution of arbitrary code. This issue also does not represent a\nsignificant Denial of Service attack as requests will continue to be\nhandled by other Apache child processes. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CAN-2004-0751 to\nthis issue.\n\nAn issue was discovered in the mod_dav module which could be triggered for\na location where WebDAV authoring access has been configured. A malicious\nremote client which is authorized to use the LOCK method could force an\nhttpd child process to crash by sending a particular sequence of LOCK\nrequests. This issue does not allow execution of arbitrary code. This\nissue also does not represent a significant Denial of Service attack as\nrequests will continue to be handled by other Apache child processes. The\nCommon Vulnerabilities and Exposures project (cve.mitre.org) has assigned\nthe name CAN-2004-0809 to this issue. \n\nUsers of the Apache HTTP server should upgrade to these updated packages,\nwhich contain backported patches that address these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2004:463",
"url": "https://access.redhat.com/errata/RHSA-2004:463"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "http://nagoya.apache.org/bugzilla/show_bug.cgi?id=29964",
"url": "http://nagoya.apache.org/bugzilla/show_bug.cgi?id=29964"
},
{
"category": "external",
"summary": "http://nagoya.apache.org/bugzilla/show_bug.cgi?id=31183",
"url": "http://nagoya.apache.org/bugzilla/show_bug.cgi?id=31183"
},
{
"category": "external",
"summary": "131900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=131900"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_463.json"
}
],
"title": "Red Hat Security Advisory: httpd security update",
"tracking": {
"current_release_date": "2025-11-21T17:27:46+00:00",
"generator": {
"date": "2025-11-21T17:27:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2004:463",
"initial_release_date": "2004-09-15T15:20:00+00:00",
"revision_history": [
{
"date": "2004-09-15T15:20:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2004-09-15T00:00:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:27:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS version 3",
"product": {
"name": "Red Hat Enterprise Linux AS version 3",
"product_id": "3AS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Desktop version 3",
"product": {
"name": "Red Hat Desktop version 3",
"product_id": "3Desktop",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES version 3",
"product": {
"name": "Red Hat Enterprise Linux ES version 3",
"product_id": "3ES",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::es"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux WS version 3",
"product": {
"name": "Red Hat Enterprise Linux WS version 3",
"product_id": "3WS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.ia64",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.ia64",
"product_id": "httpd-devel-0:2.0.46-40.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.ia64",
"product": {
"name": "httpd-0:2.0.46-40.ent.ia64",
"product_id": "httpd-0:2.0.46-40.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.ia64",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.ia64",
"product_id": "mod_ssl-1:2.0.46-40.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=ia64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.x86_64",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.x86_64",
"product_id": "httpd-devel-0:2.0.46-40.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.x86_64",
"product": {
"name": "httpd-0:2.0.46-40.ent.x86_64",
"product_id": "httpd-0:2.0.46-40.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.x86_64",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.x86_64",
"product_id": "mod_ssl-1:2.0.46-40.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.i386",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.i386",
"product_id": "httpd-devel-0:2.0.46-40.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.i386",
"product": {
"name": "httpd-0:2.0.46-40.ent.i386",
"product_id": "httpd-0:2.0.46-40.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.i386",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.i386",
"product_id": "mod_ssl-1:2.0.46-40.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.src",
"product": {
"name": "httpd-0:2.0.46-40.ent.src",
"product_id": "httpd-0:2.0.46-40.ent.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.ppc",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.ppc",
"product_id": "httpd-devel-0:2.0.46-40.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.ppc",
"product": {
"name": "httpd-0:2.0.46-40.ent.ppc",
"product_id": "httpd-0:2.0.46-40.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.ppc",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.ppc",
"product_id": "mod_ssl-1:2.0.46-40.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.s390x",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.s390x",
"product_id": "httpd-devel-0:2.0.46-40.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.s390x",
"product": {
"name": "httpd-0:2.0.46-40.ent.s390x",
"product_id": "httpd-0:2.0.46-40.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.s390x",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.s390x",
"product_id": "mod_ssl-1:2.0.46-40.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.s390",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.s390",
"product_id": "httpd-devel-0:2.0.46-40.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.s390",
"product": {
"name": "httpd-0:2.0.46-40.ent.s390",
"product_id": "httpd-0:2.0.46-40.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.s390",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.s390",
"product_id": "mod_ssl-1:2.0.46-40.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.src as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.src"
},
"product_reference": "httpd-0:2.0.46-40.ent.src",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.i386",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.i386 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ia64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ppc as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390x as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.src as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.src"
},
"product_reference": "httpd-0:2.0.46-40.ent.src",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.x86_64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.i386 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ia64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ppc as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390x as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.x86_64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.i386 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.i386",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ia64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ppc as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390x as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.x86_64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.src as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.src"
},
"product_reference": "httpd-0:2.0.46-40.ent.src",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.i386",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.src as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.src"
},
"product_reference": "httpd-0:2.0.46-40.ent.src",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.i386",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3WS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2004-0747",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617261"
}
],
"notes": [
{
"category": "description",
"text": "Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2004-0747"
},
{
"category": "external",
"summary": "RHBZ#1617261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617261"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2004-0747",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-0747"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0747",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0747"
}
],
"release_date": "2004-09-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2004-09-15T15:20:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/",
"product_ids": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2004:463"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2004-0751",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617264"
}
],
"notes": [
{
"category": "description",
"text": "The char_buffer_read function in the mod_ssl module for Apache 2.x, when using reverse proxying to an SSL server, allows remote attackers to cause a denial of service (segmentation fault).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2004-0751"
},
{
"category": "external",
"summary": "RHBZ#1617264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617264"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2004-0751",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-0751"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0751",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0751"
}
],
"release_date": "2004-09-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2004-09-15T15:20:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/",
"product_ids": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2004:463"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2004-0786",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617289"
}
],
"notes": [
{
"category": "description",
"text": "The IPv6 URI parsing routines in the apr-util library for Apache 2.0.50 and earlier allow remote attackers to cause a denial of service (child process crash) via a certain URI, as demonstrated using the Codenomicon HTTP Test Tool.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2004-0786"
},
{
"category": "external",
"summary": "RHBZ#1617289",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617289"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2004-0786",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-0786"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0786",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0786"
}
],
"release_date": "2004-09-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2004-09-15T15:20:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/",
"product_ids": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2004:463"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2004-0809",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617299"
}
],
"notes": [
{
"category": "description",
"text": "The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2004-0809"
},
{
"category": "external",
"summary": "RHBZ#1617299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2004-0809",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-0809"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0809",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0809"
}
],
"release_date": "2004-09-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2004-09-15T15:20:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/",
"product_ids": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2004:463"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "security flaw"
}
]
}
RHSA-2004_463
Vulnerability from csaf_redhat - Published: 2004-09-15 15:20 - Updated: 2024-11-21 23:11Summary
Red Hat Security Advisory: httpd security update
Severity
Moderate
Notes
Topic: Updated httpd packages that include fixes for security issues are now
available.
Details: The Apache HTTP server is a powerful, full-featured, efficient, and
freely-available Web server.
Four issues have been discovered affecting releases of the Apache HTTP 2.0
Server, up to and including version 2.0.50:
Testing using the Codenomicon HTTP Test Tool performed by the Apache
Software Foundation security group and Red Hat uncovered an input
validation issue in the IPv6 URI parsing routines in the apr-util library.
If a remote attacker sent a request including a carefully crafted URI, an
httpd child process could be made to crash. This issue is not believed to
allow arbitrary code execution on Red Hat Enterprise Linux. This issue
also does not represent a significant denial of service attack as requests
will continue to be handled by other Apache child processes. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2004-0786 to this issue.
The Swedish IT Incident Centre (SITIC) reported a buffer overflow in the
expansion of environment variables during configuration file parsing. This
issue could allow a local user to gain 'apache' privileges if an httpd
process can be forced to parse a carefully crafted .htaccess file written
by a local user. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0747 to this issue.
An issue was discovered in the mod_ssl module which could be triggered if
the server is configured to allow proxying to a remote SSL server. A
malicious remote SSL server could force an httpd child process to crash by
sending a carefully crafted response header. This issue is not believed to
allow execution of arbitrary code. This issue also does not represent a
significant Denial of Service attack as requests will continue to be
handled by other Apache child processes. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2004-0751 to
this issue.
An issue was discovered in the mod_dav module which could be triggered for
a location where WebDAV authoring access has been configured. A malicious
remote client which is authorized to use the LOCK method could force an
httpd child process to crash by sending a particular sequence of LOCK
requests. This issue does not allow execution of arbitrary code. This
issue also does not represent a significant Denial of Service attack as
requests will continue to be handled by other Apache child processes. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the name CAN-2004-0809 to this issue.
Users of the Apache HTTP server should upgrade to these updated packages,
which contain backported patches that address these issues.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.
Affected products
Fixed
100 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
The char_buffer_read function in the mod_ssl module for Apache 2.x, when using reverse proxying to an SSL server, allows remote attackers to cause a denial of service (segmentation fault).
Affected products
Fixed
100 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
The IPv6 URI parsing routines in the apr-util library for Apache 2.0.50 and earlier allow remote attackers to cause a denial of service (child process crash) via a certain URI, as demonstrated using the Codenomicon HTTP Test Tool.
Affected products
Fixed
100 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.
Affected products
Fixed
100 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3AS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3ES:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:httpd-devel-0:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.i386 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ia64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.ppc | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 3WS:mod_ssl-1:2.0.46-40.ent.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Low
References
22 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated httpd packages that include fixes for security issues are now\navailable.",
"title": "Topic"
},
{
"category": "general",
"text": "The Apache HTTP server is a powerful, full-featured, efficient, and\nfreely-available Web server.\n\nFour issues have been discovered affecting releases of the Apache HTTP 2.0\nServer, up to and including version 2.0.50:\n\nTesting using the Codenomicon HTTP Test Tool performed by the Apache\nSoftware Foundation security group and Red Hat uncovered an input\nvalidation issue in the IPv6 URI parsing routines in the apr-util library. \nIf a remote attacker sent a request including a carefully crafted URI, an\nhttpd child process could be made to crash. This issue is not believed to\nallow arbitrary code execution on Red Hat Enterprise Linux. This issue\nalso does not represent a significant denial of service attack as requests\nwill continue to be handled by other Apache child processes. The Common\nVulnerabilities and Exposures project (cve.mitre.org) has assigned the name\nCAN-2004-0786 to this issue.\n\nThe Swedish IT Incident Centre (SITIC) reported a buffer overflow in the\nexpansion of environment variables during configuration file parsing. This\nissue could allow a local user to gain \u0027apache\u0027 privileges if an httpd\nprocess can be forced to parse a carefully crafted .htaccess file written\nby a local user. The Common Vulnerabilities and Exposures project\n(cve.mitre.org) has assigned the name CAN-2004-0747 to this issue.\n\nAn issue was discovered in the mod_ssl module which could be triggered if\nthe server is configured to allow proxying to a remote SSL server. A\nmalicious remote SSL server could force an httpd child process to crash by\nsending a carefully crafted response header. This issue is not believed to\nallow execution of arbitrary code. This issue also does not represent a\nsignificant Denial of Service attack as requests will continue to be\nhandled by other Apache child processes. The Common Vulnerabilities and\nExposures project (cve.mitre.org) has assigned the name CAN-2004-0751 to\nthis issue.\n\nAn issue was discovered in the mod_dav module which could be triggered for\na location where WebDAV authoring access has been configured. A malicious\nremote client which is authorized to use the LOCK method could force an\nhttpd child process to crash by sending a particular sequence of LOCK\nrequests. This issue does not allow execution of arbitrary code. This\nissue also does not represent a significant Denial of Service attack as\nrequests will continue to be handled by other Apache child processes. The\nCommon Vulnerabilities and Exposures project (cve.mitre.org) has assigned\nthe name CAN-2004-0809 to this issue. \n\nUsers of the Apache HTTP server should upgrade to these updated packages,\nwhich contain backported patches that address these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2004:463",
"url": "https://access.redhat.com/errata/RHSA-2004:463"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "http://nagoya.apache.org/bugzilla/show_bug.cgi?id=29964",
"url": "http://nagoya.apache.org/bugzilla/show_bug.cgi?id=29964"
},
{
"category": "external",
"summary": "http://nagoya.apache.org/bugzilla/show_bug.cgi?id=31183",
"url": "http://nagoya.apache.org/bugzilla/show_bug.cgi?id=31183"
},
{
"category": "external",
"summary": "131900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=131900"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_463.json"
}
],
"title": "Red Hat Security Advisory: httpd security update",
"tracking": {
"current_release_date": "2024-11-21T23:11:45+00:00",
"generator": {
"date": "2024-11-21T23:11:45+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2004:463",
"initial_release_date": "2004-09-15T15:20:00+00:00",
"revision_history": [
{
"date": "2004-09-15T15:20:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2004-09-15T00:00:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-21T23:11:45+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS version 3",
"product": {
"name": "Red Hat Enterprise Linux AS version 3",
"product_id": "3AS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Desktop version 3",
"product": {
"name": "Red Hat Desktop version 3",
"product_id": "3Desktop",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES version 3",
"product": {
"name": "Red Hat Enterprise Linux ES version 3",
"product_id": "3ES",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::es"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux WS version 3",
"product": {
"name": "Red Hat Enterprise Linux WS version 3",
"product_id": "3WS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.ia64",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.ia64",
"product_id": "httpd-devel-0:2.0.46-40.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.ia64",
"product": {
"name": "httpd-0:2.0.46-40.ent.ia64",
"product_id": "httpd-0:2.0.46-40.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.ia64",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.ia64",
"product_id": "mod_ssl-1:2.0.46-40.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=ia64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.x86_64",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.x86_64",
"product_id": "httpd-devel-0:2.0.46-40.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.x86_64",
"product": {
"name": "httpd-0:2.0.46-40.ent.x86_64",
"product_id": "httpd-0:2.0.46-40.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.x86_64",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.x86_64",
"product_id": "mod_ssl-1:2.0.46-40.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.i386",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.i386",
"product_id": "httpd-devel-0:2.0.46-40.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.i386",
"product": {
"name": "httpd-0:2.0.46-40.ent.i386",
"product_id": "httpd-0:2.0.46-40.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=i386"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.i386",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.i386",
"product_id": "mod_ssl-1:2.0.46-40.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.src",
"product": {
"name": "httpd-0:2.0.46-40.ent.src",
"product_id": "httpd-0:2.0.46-40.ent.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.ppc",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.ppc",
"product_id": "httpd-devel-0:2.0.46-40.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.ppc",
"product": {
"name": "httpd-0:2.0.46-40.ent.ppc",
"product_id": "httpd-0:2.0.46-40.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.ppc",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.ppc",
"product_id": "mod_ssl-1:2.0.46-40.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=ppc\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.s390x",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.s390x",
"product_id": "httpd-devel-0:2.0.46-40.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.s390x",
"product": {
"name": "httpd-0:2.0.46-40.ent.s390x",
"product_id": "httpd-0:2.0.46-40.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.s390x",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.s390x",
"product_id": "mod_ssl-1:2.0.46-40.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "httpd-devel-0:2.0.46-40.ent.s390",
"product": {
"name": "httpd-devel-0:2.0.46-40.ent.s390",
"product_id": "httpd-devel-0:2.0.46-40.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-devel@2.0.46-40.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "httpd-0:2.0.46-40.ent.s390",
"product": {
"name": "httpd-0:2.0.46-40.ent.s390",
"product_id": "httpd-0:2.0.46-40.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd@2.0.46-40.ent?arch=s390"
}
}
},
{
"category": "product_version",
"name": "mod_ssl-1:2.0.46-40.ent.s390",
"product": {
"name": "mod_ssl-1:2.0.46-40.ent.s390",
"product_id": "mod_ssl-1:2.0.46-40.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mod_ssl@2.0.46-40.ent?arch=s390\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"product": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"product_id": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/httpd-debuginfo@2.0.46-40.ent?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.src as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.src"
},
"product_reference": "httpd-0:2.0.46-40.ent.src",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:httpd-devel-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.i386",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
"product_id": "3AS:mod_ssl-1:2.0.46-40.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.i386 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ia64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ppc as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390x as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.src as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.src"
},
"product_reference": "httpd-0:2.0.46-40.ent.src",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.x86_64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.i386 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ia64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ppc as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390x as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.x86_64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.i386 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.i386",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ia64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ppc as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390x as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.x86_64 as a component of Red Hat Desktop version 3",
"product_id": "3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.src as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.src"
},
"product_reference": "httpd-0:2.0.46-40.ent.src",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:httpd-devel-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.i386",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
"product_id": "3ES:mod_ssl-1:2.0.46-40.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.src as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.src"
},
"product_reference": "httpd-0:2.0.46-40.ent.src",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-debuginfo-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.i386"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.i386",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.ia64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.ppc"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.s390"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.s390x"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "httpd-devel-0:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:httpd-devel-0:2.0.46-40.ent.x86_64"
},
"product_reference": "httpd-devel-0:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.i386 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.i386"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.i386",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ia64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.ia64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ia64",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.ppc as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.ppc"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.ppc",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.s390"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.s390x as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.s390x"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.s390x",
"relates_to_product_reference": "3WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mod_ssl-1:2.0.46-40.ent.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
"product_id": "3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
},
"product_reference": "mod_ssl-1:2.0.46-40.ent.x86_64",
"relates_to_product_reference": "3WS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2004-0747",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617261"
}
],
"notes": [
{
"category": "description",
"text": "Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2004-0747"
},
{
"category": "external",
"summary": "RHBZ#1617261",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617261"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2004-0747",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-0747"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0747",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0747"
}
],
"release_date": "2004-09-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2004-09-15T15:20:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/",
"product_ids": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2004:463"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2004-0751",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617264"
}
],
"notes": [
{
"category": "description",
"text": "The char_buffer_read function in the mod_ssl module for Apache 2.x, when using reverse proxying to an SSL server, allows remote attackers to cause a denial of service (segmentation fault).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2004-0751"
},
{
"category": "external",
"summary": "RHBZ#1617264",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617264"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2004-0751",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-0751"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0751",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0751"
}
],
"release_date": "2004-09-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2004-09-15T15:20:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/",
"product_ids": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2004:463"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2004-0786",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617289"
}
],
"notes": [
{
"category": "description",
"text": "The IPv6 URI parsing routines in the apr-util library for Apache 2.0.50 and earlier allow remote attackers to cause a denial of service (child process crash) via a certain URI, as demonstrated using the Codenomicon HTTP Test Tool.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2004-0786"
},
{
"category": "external",
"summary": "RHBZ#1617289",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617289"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2004-0786",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-0786"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0786",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0786"
}
],
"release_date": "2004-09-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2004-09-15T15:20:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/",
"product_ids": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2004:463"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2004-0809",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617299"
}
],
"notes": [
{
"category": "description",
"text": "The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2004-0809"
},
{
"category": "external",
"summary": "RHBZ#1617299",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617299"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2004-0809",
"url": "https://www.cve.org/CVERecord?id=CVE-2004-0809"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0809",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0809"
}
],
"release_date": "2004-09-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2004-09-15T15:20:00+00:00",
"details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/",
"product_ids": [
"3AS:httpd-0:2.0.46-40.ent.i386",
"3AS:httpd-0:2.0.46-40.ent.ia64",
"3AS:httpd-0:2.0.46-40.ent.ppc",
"3AS:httpd-0:2.0.46-40.ent.s390",
"3AS:httpd-0:2.0.46-40.ent.s390x",
"3AS:httpd-0:2.0.46-40.ent.src",
"3AS:httpd-0:2.0.46-40.ent.x86_64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3AS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3AS:httpd-devel-0:2.0.46-40.ent.i386",
"3AS:httpd-devel-0:2.0.46-40.ent.ia64",
"3AS:httpd-devel-0:2.0.46-40.ent.ppc",
"3AS:httpd-devel-0:2.0.46-40.ent.s390",
"3AS:httpd-devel-0:2.0.46-40.ent.s390x",
"3AS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3AS:mod_ssl-1:2.0.46-40.ent.i386",
"3AS:mod_ssl-1:2.0.46-40.ent.ia64",
"3AS:mod_ssl-1:2.0.46-40.ent.ppc",
"3AS:mod_ssl-1:2.0.46-40.ent.s390",
"3AS:mod_ssl-1:2.0.46-40.ent.s390x",
"3AS:mod_ssl-1:2.0.46-40.ent.x86_64",
"3Desktop:httpd-0:2.0.46-40.ent.i386",
"3Desktop:httpd-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-0:2.0.46-40.ent.s390",
"3Desktop:httpd-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-0:2.0.46-40.ent.src",
"3Desktop:httpd-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.i386",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ia64",
"3Desktop:httpd-devel-0:2.0.46-40.ent.ppc",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390",
"3Desktop:httpd-devel-0:2.0.46-40.ent.s390x",
"3Desktop:httpd-devel-0:2.0.46-40.ent.x86_64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.i386",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ia64",
"3Desktop:mod_ssl-1:2.0.46-40.ent.ppc",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390",
"3Desktop:mod_ssl-1:2.0.46-40.ent.s390x",
"3Desktop:mod_ssl-1:2.0.46-40.ent.x86_64",
"3ES:httpd-0:2.0.46-40.ent.i386",
"3ES:httpd-0:2.0.46-40.ent.ia64",
"3ES:httpd-0:2.0.46-40.ent.ppc",
"3ES:httpd-0:2.0.46-40.ent.s390",
"3ES:httpd-0:2.0.46-40.ent.s390x",
"3ES:httpd-0:2.0.46-40.ent.src",
"3ES:httpd-0:2.0.46-40.ent.x86_64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3ES:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3ES:httpd-devel-0:2.0.46-40.ent.i386",
"3ES:httpd-devel-0:2.0.46-40.ent.ia64",
"3ES:httpd-devel-0:2.0.46-40.ent.ppc",
"3ES:httpd-devel-0:2.0.46-40.ent.s390",
"3ES:httpd-devel-0:2.0.46-40.ent.s390x",
"3ES:httpd-devel-0:2.0.46-40.ent.x86_64",
"3ES:mod_ssl-1:2.0.46-40.ent.i386",
"3ES:mod_ssl-1:2.0.46-40.ent.ia64",
"3ES:mod_ssl-1:2.0.46-40.ent.ppc",
"3ES:mod_ssl-1:2.0.46-40.ent.s390",
"3ES:mod_ssl-1:2.0.46-40.ent.s390x",
"3ES:mod_ssl-1:2.0.46-40.ent.x86_64",
"3WS:httpd-0:2.0.46-40.ent.i386",
"3WS:httpd-0:2.0.46-40.ent.ia64",
"3WS:httpd-0:2.0.46-40.ent.ppc",
"3WS:httpd-0:2.0.46-40.ent.s390",
"3WS:httpd-0:2.0.46-40.ent.s390x",
"3WS:httpd-0:2.0.46-40.ent.src",
"3WS:httpd-0:2.0.46-40.ent.x86_64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.i386",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ia64",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.ppc",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.s390x",
"3WS:httpd-debuginfo-0:2.0.46-40.ent.x86_64",
"3WS:httpd-devel-0:2.0.46-40.ent.i386",
"3WS:httpd-devel-0:2.0.46-40.ent.ia64",
"3WS:httpd-devel-0:2.0.46-40.ent.ppc",
"3WS:httpd-devel-0:2.0.46-40.ent.s390",
"3WS:httpd-devel-0:2.0.46-40.ent.s390x",
"3WS:httpd-devel-0:2.0.46-40.ent.x86_64",
"3WS:mod_ssl-1:2.0.46-40.ent.i386",
"3WS:mod_ssl-1:2.0.46-40.ent.ia64",
"3WS:mod_ssl-1:2.0.46-40.ent.ppc",
"3WS:mod_ssl-1:2.0.46-40.ent.s390",
"3WS:mod_ssl-1:2.0.46-40.ent.s390x",
"3WS:mod_ssl-1:2.0.46-40.ent.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2004:463"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "security flaw"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…