FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mod_python denial-of-service vulnerability in parse_qs

Affected packages
2.7	<=	mod_python	<	2.7.10
3.0	<=	mod_python	<	3.0.4

Details

VuXML ID	1a448eb7-6988-11d8-873f-0020ed76ef5a
Discovery	2003-11-28
Entry	2004-03-03
Modified	2004-03-11

An attacker may cause Apache with mod_python to crash by using a specially constructed query string.

References

Bugtraq ID	9129
CVE Name	CVE-2003-0973
URL	http://www.modpython.org/pipermail/mod_python/2003-November/014532.html
URL	http://www.modpython.org/pipermail/mod_python/2004-January/014879.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.