Apache Mod_Rewrite Off-By-One Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Apache Mod_Rewrite Off-By-One Buffer Overflow Vulnerability

Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

The following exploits are available:

/data/vulnerabilities/exploits/19204.sh
/data/vulnerabilities/exploits/19204-2.sh
/data/vulnerabilities/exploits/19204.c
/data/vulnerabilities/exploits/apache-mod-rewrite.rb