CERT-In Vulnerability Note CIVN-2006-74
Apache "mod_rewrite" Remote Off-By-One Buffer Overflow Vulnerability

Original Issue Date: August 07, 2006

Severity Rating: High

Systems Affected

• Apache versions 1.3.28- 1.3.36
• Apache versions 2.0.46 - 2.0.58
• Apache versions 2.2.0 - 2.2.2

Overview

A vulnerability has been reported in Apache which could be exploited by remote attackers to execute arbitrary code or cause denial of service attacks.

Description

A buffer overflow error has been reported in Apache HTTP server due to an off-by-one error in the "escape_absolute_uri()" function while processing a specially crafted LDAP URI.

This vulnerability could be exploited by remote attackers to execute arbitrary commands or crash a web server process.

Workarounds

Disable mod_rewrite if it is not required in your web server configuration.

Solution

Update to version 1.3.37, 2.0.59, or 2.2.3 and later.

Vendor Information

Apache Software Foundation
http://www.apache.org

Refrences

Apache Software Foundation
http://www.apache.org/dist/httpd/Announcement2.2.html
http://www.apache.org/dist/httpd/Announcement2.0.html
http://www.apache.org/dist/httpd/Announcement1.3.html

FrSIRT- ADV-2006-3017
http://www.frsirt.com/english/advisories/2006/3017

Secunia
http://secunia.com/advisories/21197/

Security Focus
http://www.securityfocus.com/bid/19204

CVE Name
CVE-2006-3747

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003