Apache mod_ssl Stack Overflow in ssl_util_uuencode_binary() May Let Remote Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1010322
|
|
SecurityTracker URL: http://securitytracker.com/id?1010322
|
|
CVE Reference: CAN-2004-0488
(Links to External Site)
|
Date: May 28 2004
|
Impact: Execution of arbitrary code via network, User access via network
|
Advisory: Georgi Guninski
|
Description: A buffer overflow vulnerability was reported in Apache mod_ssl. A remote user may be able to execute arbitrary code on the target system in certain situations.
Georgi Guninski reported that the ssl_util_uuencode_binary() function in 'ssl_util.c' may allow a remote user to supply a specially
crafted Subject-DN in a client certificate to trigger the overflow. According to OpenPKG, the overflow resides in the "SSLOptions
+FakeBasicAuth" implementation of mod_ssl and can be triggered if the Subject-DN is longer than 6 KB and mod_ssl is configured to
trust the certificate's issuing CA.
|
Impact: A remote user may be able to execute arbitrary code on the target system in certain cases.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: www.modssl.org/ (Links to External Site)
|
Cause: Boundary error
|
Underlying OS: Linux (Any), UNIX (Any), Windows (Any)
|
Reported By: Georgi Guninski <guninski@guninski.com>
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
