Description
This alert was generated using only banner information. It may be a false positive.
Apache mod_rewrite is prone to an off-by-one buffer-overflow condition. The vulnerability arising in the mod_rewrite module's ldap scheme handling allows for potential memory corruption when an attacker exploits certain rewrite rules.
Affected Apache versions:
- Apache 1.3.28 - 1.3.36 with mod_rewrite
- Apache 2.2.0 - 2.2.2 with mod_rewrite
- Apache 2.0.46 - 2.0.58 with mod_rewrite
Remediation
Upgrade Apache to the latest version.
References
Related Vulnerabilities
WordPress Plugin Email Verification for WooCommerce Unspecified Vulnerability (1.8.1)
Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-28169)
Oracle Application Server Other Vulnerability (CVE-2006-5360)