Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:APACHE:REWRITE-OF

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Apache mod_rewrite Buffer Overflow

Release Date

 2006/10/16

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Apache mod_rewrite Buffer Overflow


This signature detects attempts to exploit a known vulnerability in the Apache mod_rewrite module. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the Apache daemon.

Extended Description

Apache mod_rewrite is prone to an off-by-one buffer-overflow condition. The vulnerability arising in the mod_rewrite module's ldap scheme handling allows for potential memory corruption when an attacker exploits certain rewrite rules. An attacker may exploit this issue to trigger a denial-of-service condition. Reportedly, arbitrary code execution may be possible as well.

Affected Products

  • Apache Software Foundation Apache 1.3.28
  • Apache Software Foundation Apache 1.3.29
  • Apache Software Foundation Apache 1.3.3
  • Apache Software Foundation Apache 1.3.31
  • Apache Software Foundation Apache 1.3.32
  • Apache Software Foundation Apache 1.3.33
  • Apache Software Foundation Apache 1.3.34
  • Apache Software Foundation Apache 1.3.35 -Dev
  • Apache Software Foundation Apache 1.3.36
  • Apache Software Foundation Apache 1.3.4
  • Apache Software Foundation Apache 1.3.6
  • Apache Software Foundation Apache 1.3.7 -Dev
  • Apache Software Foundation Apache 1.3.9
  • Apache Software Foundation Apache 2.0.46
  • Apache Software Foundation Apache 2.0.47
  • Apache Software Foundation Apache 2.0.48
  • Apache Software Foundation Apache 2.0.49
  • Apache Software Foundation Apache 2.0.50
  • Apache Software Foundation Apache 2.0.51
  • Apache Software Foundation Apache 2.0.52
  • Apache Software Foundation Apache 2.0.53
  • Apache Software Foundation Apache 2.0.54
  • Apache Software Foundation Apache 2.0.55
  • Apache Software Foundation Apache 2.0.56 -Dev
  • Apache Software Foundation Apache 2.2.0
  • Apple Mac OS X 10.4.1
  • Apple Mac OS X 10.4.10
  • Apple Mac OS X 10.4.11
  • Apple Mac OS X 10.4.2
  • Apple Mac OS X 10.4.3
  • Apple Mac OS X 10.4.4
  • Apple Mac OS X 10.4.5
  • Apple Mac OS X 10.4.6
  • Apple Mac OS X 10.4.7
  • Apple Mac OS X 10.4.8
  • Apple Mac OS X 10.4.9
  • Apple Mac OS X Server 10.4.1
  • Apple Mac OS X Server 10.4.10
  • Apple Mac OS X Server 10.4.11
  • Apple Mac OS X Server 10.4.2
  • Apple Mac OS X Server 10.4.3
  • Apple Mac OS X Server 10.4.4
  • Apple Mac OS X Server 10.4.5
  • Apple Mac OS X Server 10.4.6
  • Apple Mac OS X Server 10.4.7
  • Apple Mac OS X Server 10.4.8
  • Apple Mac OS X Server 10.4.9
  • Apple Mac OS X Server 10.5
  • Apple Mac OS X Server 10.5.1
  • Apple Mac OS X Server 10.5.2
  • Debian Linux 3.1.0
  • Debian Linux 3.1.0 Alpha
  • Debian Linux 3.1.0 Amd64
  • Debian Linux 3.1.0 Arm
  • Debian Linux 3.1.0 Hppa
  • Debian Linux 3.1.0 Ia-32
  • Debian Linux 3.1.0 Ia-64
  • Debian Linux 3.1.0 M68k
  • Debian Linux 3.1.0 Mips
  • Debian Linux 3.1.0 Mipsel
  • Debian Linux 3.1.0 Ppc
  • Debian Linux 3.1.0 S/390
  • Debian Linux 3.1.0 Sparc
  • Gentoo Linux
  • HP HP-UX B.11.00
  • HP HP-UX B.11.04
  • HP HP-UX B.11.11
  • HP HP-UX B.11.23
  • HP OpenView Network Node Manager 6.41
  • HP OpenView Network Node Manager 7.01
  • HP OpenView Network Node Manager 7.51
  • HP OpenVMS Secure Web Server 1.1
  • HP OpenVMS Secure Web Server 1.1.0 -1
  • HP OpenVMS Secure Web Server 1.2.0
  • HP OpenVMS Secure Web Server 2.1-1
  • HP System Management Homepage 2.0.0
  • HP System Management Homepage 2.0.1
  • HP System Management Homepage 2.0.2
  • HP System Management Homepage 2.1.0
  • HP System Management Homepage 2.1.1
  • HP System Management Homepage 2.1.2
  • HP System Management Homepage 2.1.3
  • HP System Management Homepage 2.1.3 .132
  • HP System Management Homepage 2.1.4
  • HP System Management Homepage 2.1.5
  • HP System Management Homepage 2.1.6
  • HP VirtualVault 4.7.0
  • HP VirtualVault A.04.50
  • HP VirtualVault A.04.60
  • HP VirtualVault A.04.70
  • HP Webproxy A.02.00
  • HP Webproxy A.02.10
  • IBM Hardware Management Console (HMC) for iSeries 6.0 R1.0
  • IBM Hardware Management Console (HMC) for pSeries 6.0 R1.0
  • IBM HTTP Server 1.3.26 .2
  • IBM HTTP Server 1.3.28 .1
  • IBM Websphere Application Server 6.0.2
  • IBM Websphere Application Server 6.0.2.1
  • IBM Websphere Application Server 6.0.2.11
  • IBM Websphere Application Server 6.0.2.13
  • IBM Websphere Application Server 6.0.2.3
  • IBM Websphere Application Server 6.0.2.5
  • IBM Websphere Application Server 6.0.2.7
  • IBM Websphere Application Server 6.0.2.9
  • IBM Websphere Application Server 6.1.0
  • IBM Websphere Application Server 6.1.0.1
  • IBM Websphere Application Server 6.1.0.2
  • Mandriva Corporate Server 3.0.0
  • Mandriva Corporate Server 3.0.0 X86 64
  • Mandriva Linux Mandrake 2006.0.0
  • Mandriva Linux Mandrake 2006.0.0 X86 64
  • Mandriva Multi Network Firewall 2.0.0
  • OpenBSD 3.8
  • OpenBSD 3.9
  • OpenPKG 2.0.0
  • OpenPKG 2.1.0
  • OpenPKG 2.2.0
  • OpenPKG 2.3.0
  • OpenPKG 2.4.0
  • OpenPKG 2.5.0
  • rPath rPath Linux 1
  • Slackware Linux 10.0.0
  • Slackware Linux 10.1.0
  • Slackware Linux 10.2.0
  • Slackware Linux 8.1.0
  • Slackware Linux 9.0.0
  • Slackware Linux 9.1.0
  • Slackware Linux -Current
  • Sun Solaris 10 X86
  • Sun Solaris 8 Sparc
  • Sun Solaris 8 X86
  • Sun Solaris 9 Sparc
  • Sun Solaris 9 X86
  • SuSE Linux Enterprise Server for S/390 9.0.0
  • SuSE Linux Enterprise Server for S/390
  • SuSE Linux Personal 10.0.0 OSS
  • SuSE Linux Personal 10.1
  • SuSE Linux Personal 9.2.0
  • SuSE Linux Personal 9.2.0 X86 64
  • SuSE Linux Personal 9.3.0
  • SuSE Linux Personal 9.3.0 X86 64
  • SuSE Linux Professional 10.0.0
  • SuSE Linux Professional 10.0.0 OSS
  • SuSE Linux Professional 10.1
  • SuSE Linux Professional 9.2.0
  • SuSE Linux Professional 9.2.0 X86 64
  • SuSE Linux Professional 9.3.0
  • SuSE Linux Professional 9.3.0 X86 64
  • SuSE SUSE Linux Enterprise SDK 10
  • SuSE SUSE Linux Enterprise Server 10
  • SuSE SUSE Linux Enterprise Server 9
  • Trustix Secure Enterprise Linux 2.0.0
  • Trustix Secure Linux 2.2.0
  • Trustix Secure Linux 3.0.0
  • Turbolinux Appliance Server 2.0
  • Turbolinux Home
  • Turbolinux Multimedia
  • Turbolinux Personal
  • Turbolinux 10 F...
  • Turbolinux FUJI
  • Turbolinux Turbolinux Desktop 10.0.0
  • Turbolinux Turbolinux Server 10.0.0
  • Turbolinux Turbolinux Server 10.0.0 X86
  • Ubuntu Ubuntu Linux 5.0.0 4 Amd64
  • Ubuntu Ubuntu Linux 5.0.0 4 I386
  • Ubuntu Ubuntu Linux 5.0.0 4 Powerpc
  • Ubuntu Ubuntu Linux 5.10.0 Amd64
  • Ubuntu Ubuntu Linux 5.10.0 I386
  • Ubuntu Ubuntu Linux 5.10.0 Powerpc
  • Ubuntu Ubuntu Linux 5.10.0 Sparc
  • Ubuntu Ubuntu Linux 6.06 LTS Amd64
  • Ubuntu Ubuntu Linux 6.06 LTS I386
  • Ubuntu Ubuntu Linux 6.06 LTS Powerpc
  • Ubuntu Ubuntu Linux 6.06 LTS Sparc

References

  • BugTraq: 19204
  • CVE: CVE-2006-3747
  • URL: http://www.securityfocus.com/archive/1/443870
  • URL: http://www.kb.cert.org/vuls/id/395412
  • URL: http://www.apache.org/dist/httpd/Announcement2.0.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out