CVE-2004-1765 Information

Description

Off-by-one buffer overflow in ModSecurity (mod_security) 1.7.4 for Apache 2.x when SecFilterScanPost is enabled allows remote attackers to execute arbitrary code via crafted POST requests.

Reference

http://marc.info/?l=bugtraq&m=107945597331370&w=2 http://secunia.com/advisories/11138 http://www.kb.cert.org/vuls/id/779438 http://www.modsecurity.org/ http://www.securityfocus.com/bid/9885 http://www.s-quadra.com/advisories/Adv-20040315.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/15489