Output Filter Memory Handling Issue in mod_python from Apache
CVE-2004-2680

Currently unrated

Key Information:

Vendor: Apache
Status: Mod Python
Vendor: CVE Published:; 31 December 2004

What is CVE-2004-2680?

The mod_python module, specifically versions 3.1.4 and earlier, contains a vulnerability related to improper memory handling in its output filters. This flaw occurs when output filters process more than 16,384 bytes, leading to the potential return of portions of previously freed memory. This could enable an attacker to exploit the system and potentially disclose sensitive information from memory, posing a significant risk for applications utilizing this version of mod_python.

References

http://secunia.com/advisories/24424

third-party-advisoryx_refsource_SECUNIA

http://www.ubuntu.com/usn/usn-430-1

vendor-advisoryx_refsource_UBUNTU

http://mail-archives.apache.org/mod_mbox/httpd-python-dev...

mailing-listx_refsource_MLIST

EPSS Score

11% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Mar 4, 2007
Vulnerability published
Dec 31, 2004