The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 101444 Security Vulnerability in the Apache Web Server "mod_alias" and "mod_rewrite" Modules

Guest Author
Product: Solaris 9 Operating System, Solaris 8 Operating System

A local or remote unprivileged user may be able to execute arbitrary code with the privileges of the Apache HTTP process on Solaris 8 and Solaris 9 systems when running the bundled version of Apache. This is due to a buffer overflow in the Apache modules "mod_alias" and "mod_rewrite".

This issue is described at the following sites:

The Apache 1.3.29 and the 2.0.48 release announcements:


Avoidance: Patch
State: Resolved
First released: 10-Feb-2004

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.