VDB

CVE-2004-0488

CVE-2004-0488 PUBLISHED CVSS 7.5 HIGH

Stack-based buffer overflow in the ssl_util_uuencode_binary function in ssl_util.c for Apache mod_ssl, when mod_ssl is configured to trust the issuing CA, may allow remote attackers to execute arbitrary code via a client certificate with a long subject DN.

EPSS 62.66% · 98.4th percentile

Risk Scores

CVSS 2.0
7.5
EPSS Score
62.66%
98.4th percentile

Affected Products

VendorProductVersions
apachehttp_server2.0.35
n/an/an/a
redhatenterprise_linux_server2.0
debiandebian_linux3.0
redhatenterprise_linux_workstation2.0

Timeline

  • Jul 18, 2003 CVE Published
  • Feb 4, 2022 EPSS Score
  • May 3, 2022 CVE Updated
  • May 5, 2023 EPSS Score
  • Nov 8, 2023 EPSS Score
  • Mar 17, 2025 EPSS Score
  • Mar 29, 2025 EPSS Score
  • Apr 2, 2025 EPSS Score
  • Apr 3, 2025 EPSS Score
  • Apr 5, 2025 EPSS Score
  • Apr 15, 2025 EPSS Score
  • Apr 22, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›