Unrated severityNVD Advisory· Published Nov 17, 2003· Updated Apr 16, 2026

CVE-2003-0843

Description

Format string vulnerability in mod_gzip_printf for mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode and using the Apache log, allows remote attackers to execute arbitrary code via format string characters in an HTTP GET request with an "Accept-Encoding: gzip" header.

Affected products

Dag Apt Repository/Mod Gzip
cpe:2.3:a:dag_apt_repository:mod_gzip:*:*:*:*:*:*:*:*
Range: <=1.3.26.1a

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

marc.infonvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000