CVE-2003-0842

mod_gzip 1.3.26.1a - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode, allows remote attackers to execute arbitrary code via a long filename in a GET request with an "Accept-Encoding: gzip" header.

Exploits (1)

exploitdb WORKING POC VERIFIED

by xCrZx · cremotelinux

https://www.exploit-db.com/exploits/126

View Code ZIP pw:eip

References (1)

[Mailing List] http://marc.info/?l=bugtraq&m=105457180009860&w=2

Scores

EPSS 0.0981

EPSS Percentile 93.0%

Details

Status published

Products (1)

dag_apt_repository/mod_gzip 1.3.26.1a

Published Nov 17, 2003

Tracked Since Feb 18, 2026