Signature Detail

FTP: Apache mod_include SSL Buffer Overflow

This signature detects attempts to exploit a known vulnerability in Apache web server. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the targeted server.

Extended Description

The problem presents itself when the affected module attempts to parse mod_include-specific tag values. A failure to properly validate the lengths of user-supplied tag strings before copying them into finite buffers facilitates the overflow. A local attacker may leverage this issue to execute arbitrary code on the affected computer with the privileges of the affected Apache server.

Affected Products

• Apache Software Foundation Apache 1.3.0
• Apache Software Foundation Apache 1.3.1
• Apache Software Foundation Apache 1.3.11
• Apache Software Foundation Apache 1.3.12
• Apache Software Foundation Apache 1.3.14
• Apache Software Foundation Apache 1.3.17
• Apache Software Foundation Apache 1.3.18
• Apache Software Foundation Apache 1.3.19
• Apache Software Foundation Apache 1.3.20
• Apache Software Foundation Apache 1.3.22
• Apache Software Foundation Apache 1.3.23
• Apache Software Foundation Apache 1.3.24
• Apache Software Foundation Apache 1.3.25
• Apache Software Foundation Apache 1.3.26
• Apache Software Foundation Apache 1.3.27
• Apache Software Foundation Apache 1.3.28
• Apache Software Foundation Apache 1.3.29
• Apache Software Foundation Apache 1.3.3
• Apache Software Foundation Apache 1.3.31
• Apache Software Foundation Apache 1.3.32
• Apache Software Foundation Apache 1.3.4
• Apache Software Foundation Apache 1.3.6
• Apache Software Foundation Apache 1.3.7 -Dev
• Apache Software Foundation Apache 1.3.9
• Avaya Communication Manager 1.1.0
• Avaya Communication Manager 1.3.1
• Avaya Communication Manager 2.0.0
• Avaya Communication Manager 2.0.1
• Avaya Intuity LX
• Avaya MN100
• Avaya Modular Messaging (MSS) 1.1.0
• Avaya Modular Messaging (MSS) 2.0.0
• Avaya Network Routing
• HP HP-UX 11.0.0
• HP HP-UX 11.11.0
• HP HP-UX 11.20.0
• HP HP-UX 11.22.0
• HP HP-UX B.11.00
• HP HP-UX B.11.11
• HP HP-UX B.11.22
• HP VirtualVault A.04.50
• HP VirtualVault A.04.60
• HP VirtualVault A.04.70
• HP Webproxy A.02.00
• HP Webproxy A.02.10
• IBM Hardware Management Console (HMC) for iSeries 3.3.2
• IBM Hardware Management Console (HMC) for iSeries 4.0.0 R2.0
• IBM Hardware Management Console (HMC) for pSeries 3.3.2
• IBM Hardware Management Console (HMC) for pSeries 4.0.0 R2.0
• IBM HTTP Server 1.3.12
• IBM HTTP Server 1.3.12 .1
• IBM HTTP Server 1.3.12 .2
• IBM HTTP Server 1.3.12 .3
• IBM HTTP Server 1.3.12 .4
• IBM HTTP Server 1.3.12 .5
• IBM HTTP Server 1.3.12 .6
• IBM HTTP Server 1.3.12 .7
• IBM HTTP Server 1.3.19
• IBM HTTP Server 1.3.19 .1
• IBM HTTP Server 1.3.19 .2
• IBM HTTP Server 1.3.19 .3
• IBM HTTP Server 1.3.19 .4
• IBM HTTP Server 1.3.19 .5
• IBM HTTP Server 1.3.26
• IBM HTTP Server 1.3.26 .1
• IBM HTTP Server 1.3.26 .2
• IBM HTTP Server 1.3.28
• IBM HTTP Server 1.3.28 .1
• IBM HTTP Server 1.3.3 Win32
• IBM HTTP Server 1.3.6 .2 Unix
• IBM HTTP Server 1.3.6 .2 Win32
• IBM HTTP Server 1.3.6 .3
• IBM HTTP Server 1.3.6 .4 Win32
• IBM HTTP Server 1.3.6 Win32
• OpenPKG 2.0.0
• OpenPKG 2.1.0
• OpenPKG 2.2.0
• OpenPKG Current
• Red Hat Stronghold 4.0.0
• Slackware Linux 10.0.0
• Slackware Linux 8.0.0
• Slackware Linux 8.1.0
• Slackware Linux 9.0.0
• Slackware Linux 9.1.0
• Slackware Linux -Current
• Sun Solaris 8 Sparc
• Sun Solaris 8 X86
• Sun Solaris 9 Sparc
• Sun Solaris 9 X86
• SuSE Linux 8.0.0
• SuSE Linux 8.1.0
• SuSE Linux Personal 8.2.0
• SuSE Linux Personal 9.0.0
• SuSE Linux Personal 9.0.0 X86 64
• SuSE Linux Personal 9.1.0
• SuSE Linux Personal 9.2.0
• Trustix Secure Linux 1.5.0

References

• BugTraq: 11471
• CVE: CVE-2004-0940