Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability

Apache 'APR-util' is prone to an integer-underflow vulnerability.

Attackers can exploit this issue to execute arbitrary code in the context of an affected application. Successful exploits will compromise the affected application and possibly the computer. Failed attacks will cause denial-of-service conditions.

Versions prior to 'APR-util' 1.3.5 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus