Apache Web Server Configuration File Environment Variable Local Buffer Overflow Vulnerability

Apache Web Server Configuration File Environment Variable Local Buffer Overflow Vulnerability

References:

Apache 2.0.x Latest Release Information Page (Apache Software Foundation)
Apache Homepage (Apache Software Foundation)
CA20090429-01: CA ARCserve Backup Apache HTTP Server Multiple Vulnerabilities (Computer Associates)
PQ94086; 2.0.42.2; 2.0.47.1: Potential denial of service exposure, CAN-2004-0786 (IBM)
RHSA-2004:463-09 - Updated httpd packages fix security issues (RedHat)
SSRT4812 OpenVMS running Secure Web Server (CSWS) with Apache, arbitrary code ex (HP)
SSRT4832 Rev.0 HP Tru64 IX PHP/Apache Multiple Local\Remote Unauthorized Access (HP)
[ANNOUNCE] Apache HTTP Server 2.0.51 Released (Apache Software Foundation)
SA04-002 - Apache config file env variable buffer overflow (jonas.thambert@pts.se)

Privacy Statement
Copyright 2010, SecurityFocus