Oracle Corporation Information for VU#849993

Some implementations of mod_dav contain a format string vulnerability in "ap_log_rerror()" function

Status

Affected

Vendor Statement

See http://otn.oracle.com/deploy/security/pdf/2003alert52.pdf.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.