Apache Mod_Rewrite Off-By-One Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Apache Mod_Rewrite Off-By-One Buffer Overflow Vulnerability

Apache mod_rewrite is prone to an off-by-one buffer-overflow condition.

The vulnerability arising in the mod_rewrite module's ldap scheme handling allows for potential memory corruption when an attacker exploits certain rewrite rules.

An attacker may exploit this issue to trigger a denial-of-service condition. Reportedly, arbitrary code execution may be possible as well.