Off-by-one buffer overflow in the ssl_compat_directive function, as called by the rewrite_command hook for mod_ssl Apache module 2.8.9 and earlier, allows local users to execute arbitrary code as the Apache server user via .htaccess files with long entries.

Threat-Mapped Scoring

Score: 1.9

Priority: P3 - Important (Medium)

• S9 – Sabotage of System/App
• S10 – Denial of Service (+0.1 bonus)

EPSS

Score: 0.00351
Percentile: 0.56799

CVSS Scoring

Mapped CWE(s)

• CWE-193 : Off-by-one Error

Affected Products

• cpe:2.3:a:modssl:mod_ssl:*:*:*:*:*:*:*:*

← Back to Home