Description
This alert was generated using only banner information. It may be a false positive.
Apache mod_rewrite is prone to an off-by-one buffer-overflow condition. The vulnerability arising in the mod_rewrite module's ldap scheme handling allows for potential memory corruption when an attacker exploits certain rewrite rules.
Affected Apache versions:
- Apache 1.3.28 - 1.3.36 with mod_rewrite
- Apache 2.2.0 - 2.2.2 with mod_rewrite
- Apache 2.0.46 - 2.0.58 with mod_rewrite
Remediation
Upgrade Apache to the latest version.
References
Related Vulnerabilities
WordPress Plugin Import and export users and customers Directory Traversal (1.14.2)
phpList Incorrect Comparison Vulnerability (CVE-2020-23361)
WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-28040)
WordPress Plugin FileBird-WordPress Media Library Folders & File Manager Cross-Site Scripting (2.4)