Apache mod_alias Contains a Buffer Overflow
|
|
SecurityTracker Alert ID: 1008029
|
|
SecurityTracker URL: http://securitytracker.com/id?1008029
|
|
CVE Reference: CAN-2003-0542
(Links to External Site)
|
Date: Oct 29 2003
|
Impact: Denial of service via network, Execution of arbitrary code via network, User access via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): 2.0.47 and prior versions
|
Description: A vulnerability was reported in the Apache mod_alias component. A remote user may be able to trigger a buffer overflow.
It is reported that both mod_alias and mod_rewrite contain a buffer overflow. If the administrator has configured a regular expression
with more than 9 captures, the overflow can be triggered.
[Editor's note: The Apache notice did not indicate the impact of the
buffer overflow.]
|
Impact: [Editor's note: The Apache notice did not indicate the impact of the buffer overflow.]
|
Solution: The vendor has issued a fixed version of Apache (2.0.48), available at:
http://httpd.apache.org/download.cgi
|
Vendor URL: httpd.apache.org/ (Links to External Site)
|
Cause: Boundary error
|
Underlying OS: Linux (Any), UNIX (Any), Windows (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Wed, 29 Oct 2003 08:42:05 -0500
Subject: Apache 2.0.48 Released
|
> Apache 2.0.48 Released
> Of particular note is that 2.0.48 addresses two security vulnerabilities:
> mod_cgid mishandling of CGI redirect paths could result in CGI output going to the wrong
> client when a threaded MPM is used.
> [CAN-2003-0789]
> A buffer overflow could occur in mod_alias and mod_rewrite when a regular expression
> with more than 9 captures is configured.
> [CAN-2003-0542]
> Apache 2.0.48 is available for download from
>
> http://httpd.apache.org/download.cgi
|
|
