Description

Vulnerability in the apr_psprintf function in the Apache Portable Runtime (APR) library for Apache 2.0.37 through 2.0.45 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long strings, as demonstrated using XML objects to mod_dav, and possibly other vectors.

Remediation

References

CVE-2003-0245

Related Vulnerabilities

phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-1432)

WordPress Plugin SocialFit 'msg' Parameter Cross-Site Scripting (1.2.2)

Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5508)

WordPress Plugin Optimize images ALT Text (alt tag) & names for SEO using AI Cross-Site Request Forgery (2.0.7)

TYPO3 Use of Insufficiently Random Values Vulnerability (CVE-2010-3666)

Severity

Medium

Classification

CVE-2003-0245

Tags

Missing Update Known Vulnerabilities