SecurityTracker: (HP Issues Fix for HP System Management Homepage) Apache mod_rewrite Off-by-one Error Lets Remote Users Execute Arbitrary Code

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Generic) > HP System Management Homepage

Vendors: HP (Compaq)

(HP Issues Fix for HP System Management Homepage) Apache mod_rewrite Off-by-one Error Lets Remote Users Execute Arbitrary Code

SecurityTracker Alert ID: 1018508

SecurityTracker URL: http://securitytracker.com/id/1018508

CVE Reference: CVE-2006-3747 (Links to External Site)

Date: Aug 6 2007

Impact: Denial of service via network, Execution of arbitrary code via network, User access via network

Fix Available: Yes Vendor Confirmed: Yes

Description: A vulnerability was reported in Apache in the Rewrite module. A remote user may be able to execute arbitrary code on the target system. HP System Management Homepage for Linux and Windows is affected.

A remote user can trigger an off-by-one error in the processing of certain types of Rewrite rules to cause web server processes to crash or potentially execute arbitrary code.

The impact depends on the manner in which Apache httpd was compiled.

Impact: A remote user can execute arbitrary code on the target system.

Solution: HP has issued a fix (2.1.7 or later) for HP System Management Homepage, which is affected by this vulnerability.

HP System Management Homepage for Linux (x86) version 2.1.8-177 can be downloaded at:

http://h18023.www1.hp.com/support/files/server/us/download/26864.html

HP System Management Homepage for Linux (AMD64/EM64T) version 2.1.8-177 can be downloaded at:

http://h18023.www1.hp.com/support/files/server/us/download/26866.html

HP System Management Homepage for Windows version 2.1.8-179 can be downloaded at:

http://h18023.www1.hp.com/support/files/server/us/download/26977.html

The HP advisory is available at:

http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c01118771

Cause: Boundary error

Underlying OS: Linux (Any), Windows (Any)

Message History: This archive entry is a follow-up to the message listed below.

Apache mod_rewrite Off-by-one Error Lets Remote Users Execute Arbitrary Code

Source Message Contents

Date: Sat, 4 Aug 2007 14:18:06 -0400
Subject: HPSBMA02250 SSRT061275 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Execution of Arbitrary Code and Denial of Service



http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c01118771S

CVE-2006-2937, CVE-2006-2940, CVE-2006-3738, CVE-2006-3747, CVE-2006-4339, CVE-2006-4343

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2012, SecurityGlobal.net LLC