VYPR
High severity7.8NVD Advisory· Published Jul 11, 2002· Updated Jun 16, 2026

CVE-2002-0653

CVE-2002-0653

Description

Off-by-one buffer overflow in the ssl_compat_directive function, as called by the rewrite_command hook for mod_ssl Apache module 2.8.9 and earlier, allows local users to execute arbitrary code as the Apache server user via .htaccess files with long entries.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Mod SSL/Mod SSL2 versions
    cpe:2.3:a:modssl:mod_ssl:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:modssl:mod_ssl:*:*:*:*:*:*:*:*range: <=2.8.9
    • (no CPE)range: <=2.8.9

Patches

Vulnerability mechanics

References

18

News mentions

0

No linked articles in our index yet.