CAN-2003-0542 affects 2.0.46 Description: Multiple stack-based buffer overflows in (1) mod_alias and (2) mod_rewrite for Apache before 2.0.48 allow attackers to can create configuration files to cause a denial of service (crash) or execute arbitrary code via a regular expression with more than 9 captures. Version: This issue affects the apache package shipped with all variants of Red Hat Enterprise Linux 3.
Fixed by RHSA-2004:015, see http://rhn.redhat.com/errata/RHSA-2004-015.html