FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

ModSecurity for Apache 2.x remote off-by-one overflow

Affected packages
mod_security < 1.7.5

Details

VuXML ID c2e10368-77ab-11d8-b9e8-00e04ccb0a62
Discovery 2004-02-09
Entry 2004-03-17
Modified 2004-06-27

When the directive "SecFilterScanPost" is enabled, the Apache 2.x version of ModSecurity is vulnerable to an off-by-one overflow

References

Bugtraq ID 9885
CERT/CC Vulnerability Note 779438
URL http://secunia.com/advisories/11138
URL http://www.s-quadra.com/advisories/Adv-20040315.txt