(Apache Issues Fix) PCRE Heap Overflow May Let Users Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1014853 |
|
SecurityTracker URL: http://securitytracker.com/id/1014853
|
|
CVE Reference:
CVE-2005-2491
(Links to External Site)
|
Date: Sep 6 2005
|
Impact:
Execution of arbitrary code via local system, Execution of arbitrary code via network, User access via local system, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 6.1 and prior versions
|
Description:
A vulnerability was reported in the PCRE library. A remote or local user may be able to execute arbitrary code on the target system. The apache web server is affected.
A remote or local user may be able to supply a specially crafted regular expression to trigger a heap integer overflow in PCRE.
The impact depends on the application that uses the library. Applications that parse untrusted regular expressions may be vulnerable.
The flaw resides in 'pcre_compile.c' where certain quantifier values are not properly validated to ensure the proper values.
|
Impact:
The specific impact depends on the applications that use PCRE.
|
Solution:
A fixed version (2.0.55-dev) is available at:
http://httpd.apache.org/
|
Cause:
Boundary error
|
Underlying OS:
Linux (Any), UNIX (Any), Windows (Any)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Mon, 5 Sep 2005 16:05:35 -0400
Subject: Apache vulnerability
|
Fixed in Apache httpd 2.0.55-dev
low: PCRE overflow CAN-2005-2491
An integer overflow flaw was found in PCRE, a Perl-compatible regular expression
library included within httpd. A local user who has the ability to create .htaccess
files could create a maliciously crafted regular expression in such as way that they
could gain the privileges of a httpd child.
|
|
