ISS X-Force Database: apache-aprpsprintf-code-execution(12090): Apache HTTP Server apr

Apache HTTP Server apr_psprintf code execution

apache-aprpsprintf-code-execution (12090)

High Risk

Description:

Apache HTTP Server could allow a remote attacker to execute arbitrary code on the system or cause a denial of service. By passing an overly long string to the apr_psprintf Apache Portable Runtime (APR) function, a remote attacker could cause the server to crash or possibly execute code on the system.

Consequences:

Gain Access

Remedy:

Upgrade to the latest version of Apache HTTP Server (2.0.46 or later), available from the Apache Web site. See References.

For Red Hat Linux:
Upgrade to the latest httpd package, as listed below. Refer to RHSA-2003:186-06 for more information. See References.

Red Hat 8.0: 2.0.40-11.5 or later
Red Hat 9.0: 2.0.40-21.3 or later

For Mandrake Linux 9.1:
Upgrade to the latest apache2 package (2.0.45-4.3mdk or later), as listed in MandrakeSoft Security Advisory MDKSA-2003:063-1: apache2. See References.

For Gentoo Linux:
Upgrade to the latest version of apache-2.x (2.0.46 or later), as listed in Gentoo Linux Security Announcement 2002-05-13. See References.

For Conectiva Linux 9.0:
Upgrade to the latest apache package (2.0.45-2879OU90_2cl or later), as listed in Conectiva Linux Security Advisory CLSA-2003:661. See References.

For HP-UX 11.00, 11.11, and 11.22 :
Download and install apache-based web server, as listed in Hewlett-Packard Company Security Bulletin HPSBUX0307-269. See References.

For other distributions:
Contact your vendor for upgrade or patch information.

References:

Apache Web site: Apache 2.0.46 Released.
CIAC Information Bulletin N-099: Apache 2.0.46 Release Fixes Security Vulnerabilities.
CIAC Information Bulletin N-146: Apache 2.0.47 Release Fixes Security Vulnerabilities.
Gentoo Linux Security Announcement 2002-05-13: apache-2.x - denial of service.
iDEFENSE Security Advisory 05.30.03: Apache Portable Runtime Denial of Service and Arbitrary Code Execution Vulnerability.
BID-7723: Apache APR_PSPrintf Memory Corruption Vulnerability
CVE-2003-0245: Vulnerability in the apr_psprintf function in the Apache Portable Runtime (APR) library for Apache 2.0.37 through 2.0.45 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long strings, as demonstrated using XML objects to mod_dav, and possibly other vectors.
MDKSA-2003:063: Updated apache2 packages fix vulnerabilities
MDKSA-2003:063-1: Updated apache2 packages fix vulnerabilities
RHSA-2003-186: Updated httpd packages fix Apache security vulnerabilities
US-CERT VU#757612: Apache Portable Runtime contains heap buffer overflow in apr_psprintf()

Platforms Affected:

Apache HTTP Server 2.0.37
Apache HTTP Server 2.0.38
Apache HTTP Server 2.0.39
Apache HTTP Server 2.0.40
Apache HTTP Server 2.0.41
Apache HTTP Server 2.0.42
Apache HTTP Server 2.0.43
Apache HTTP Server 2.0.44
Apache HTTP Server 2.0.45
Conectiva Linux 9.0
Gentoo Linux
HP HP-UX 11.00
HP HP-UX 11.11
HP HP-UX 11.22
MandrakeSoft Mandrake Linux 9.1 PPC
MandrakeSoft Mandrake Linux 9.1
RedHat Linux 7
RedHat Linux 7.1
RedHat Linux 7.2
RedHat Linux 7.3
RedHat Linux 8.0
RedHat Linux 9.0

Reported:

May 28, 2003

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page