Apache APR apr_fnmatch Stack Overflow Denial of Service (CVE-2011-0419)
| Check Point Reference: | CPAI-2011-371 | |
| Date Published: | ||
| Severity: | ||
| Source: | ||
| Industry Reference(s): | CVE-2011-0419 | |
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Apache Software Foundation apr 1.4.3 and prior. | ||
| Vulnerability Description A stack overflow vulnerability has been reported in Apache Portable Runtime (APR) library. Apache is a popular HTTP web server. It uses the APR, which provides a middle layer between platform independent Apache code and the native operating system's API. A remote attacker may leverage this vulnerability to create a denial of service (DoS) condition on an affected server. |
||
|
Update/Patch Available The vendor, Apache, has released a patch to address this issue, which can be downloaded from here. |
|
|
Vulnerability Details This is a stack overflow vulnerability. The vulnerability is due to an error in the way the APR parses certain requests with a user specified filter. A remote attacker could exploit this vulnerability by sending specially crafted HTTP requests to an Apache server running the affected APR. Successful attack may lead to a DoS condition on the target server. |
Protection Overview
This protection will detect and block attempts to transfer such malicious HTTP requests.
In order for the protection to be activated, update your product to the latest update. For information on how to update , go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.