Bugtraq mailing list archives
Re: Overflow in one of Apache 1.1.1 (maybe later too)'s modules
From: pydo () EUROBRETAGNE FR (Artur Pydo - EuroBretagne)
Date: Fri, 5 Sep 1997 11:53:34 +0200
Hello, On Thu, 4 Sep 1997, Matt Conover wrote:
Hello (sorry if this gets long or if it's known but I don't think it is): Well this is an obvious overflow in one of apache's modules; it is remote too.....however, luckily for the web admin's it's not installed by default. The problem is in mod_auth_anon.c in the function anon_authenticate_basic_user(). It contains the following lines:
The mod_auth_anon.c (Version 0.5 May 1996) in Apache 1.2.4 release has the following code : if (sec->auth_anon_logemail && r->prev == NULL && r->main == NULL) { ap_snprintf(errstr, sizeof(errstr), "Anonymous: Passwd <%s> Accepted", send_pw ? send_pw : "\'none\'"); [...] } else { if (sec->auth_anon_authoritative) { ap_snprintf(errstr,sizeof(errstr), "Anonymous: Authoritative, Passwd <%s> not accepted", send_pw ? send_pw : "\'none\'"); I think it should not be vulnerable as it checks for the size of errstr. So, upgrade the mod_auth_anon.c to version 0.5 or better to Apache v. 1.2.4. Best regards, Artur Pydo.
Current thread:
- Re: Pine's re-occuring nightmare, (continued)
- Re: Pine's re-occuring nightmare Mark Crispin (Sep 01)
- HP UX Bug :) Leonid S Knyshov (Sep 01)
- Re: HP UX Bug :) Brian Mitchell (Sep 02)
- in.comsat DoS vulnerability Andrew Hobgood (Sep 02)
- You can find jizz.c here T o r g (Sep 03)
- You can find jizz.c here anonymous () ANONYMOUS ORG (Sep 03)
- [linux-security] Announce: chkexploit 1.13 (fwd) iON BARRiER (Sep 04)
- Re: [linux-security] Announce: chkexploit 1.13 (fwd) W.C. Epperson (Sep 04)
- [Alert] Website's uploader.exe (from demo) vulnerable Aleph One (Sep 04)
- Overflow in one of Apache 1.1.1 (maybe later too)'s modules Matt Conover (Sep 04)
- Re: Overflow in one of Apache 1.1.1 (maybe later too)'s modules Artur Pydo - EuroBretagne (Sep 05)
- Re: Overflow in one of Apache 1.1.1 (maybe later too)'s modules Marc Slemko (Sep 05)
- Announcement: Phrack 51 Nate (Sep 01)
- Pine has a few more problems... dynamo () IME NET (Sep 01)
- SNI-18: Vacation Vulnerability Secure Networks Inc. (Sep 01)
- SNI-18: Vacation Vulnerability ggajic () FREENET NETHER NET (Sep 02)