CVE-2004-0488
EPSS 62.7%libapache-mod-ssl - several vulnerabilities
Published: 7/7/2004Modified: 4/28/2026
Also known as:DEBIAN-CVE-2004-0488
Description
Stack-based buffer overflow in the ssl_util_uuencode_binary function in ssl_util.c for Apache mod_ssl, when mod_ssl is configured to trust the issuing CA, may allow remote attackers to execute arbitrary code via a client certificate with a long subject DN.
Affected packages (2)
- Debian/apache2from 0, < 2.0.50-1
- Debian/libapache-mod-sslfrom 0, < 2.8.9-2.4