CVE-2011-3607: Buffer Overflow

First published: Tue Nov 08 2011(Updated: )

Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, allows local users to gain privileges via a .htaccess file with a crafted SetEnvIf directive, in conjunction with a crafted HTTP request header, leading to a heap-based buffer overflow.

Credit: secalert@redhat.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-historical
• collector/redhat-bugzilla
• alias/CVE-2011-3607
• collector/nvd-index
• agent/severity
• agent/weakness
• agent/references
• agent/author
• agent/type
• agent/description
• agent/event
• agent/first-publish-date
• agent/last-modified-date
• agent/softwarecombine
• agent/tags
• collector/mitre-cve
• source/MITRE
• vendor/apache
• canonical/apache http server
• version/apache http server/2.0.42
• version/apache http server/2.0.64
• version/apache http server/2.0.58
• version/apache http server/2.0.47
• version/apache http server/2.0.56
• version/apache http server/2.0.50
• version/apache http server/2.0.35
• version/apache http server/2.0.37
• version/apache http server/2.0.55
• version/apache http server/2.0.44
• version/apache http server/2.0.39
• version/apache http server/2.0.52
• version/apache http server/2.0.53
• version/apache http server/2.0.57
• version/apache http server/2.0.51
• version/apache http server/2.0.28-beta
• version/apache http server/2.0.63
• version/apache http server/2.0.41
• version/apache http server/2.0.49
• version/apache http server/2.0.9
• version/apache http server/2.0.34-beta
• version/apache http server/2.0.61
• version/apache http server/2.0.32
• version/apache http server/2.0.38
• version/apache http server/2.0.48
• version/apache http server/2.0.45
• version/apache http server/2.0.40
• version/apache http server/2.0.36
• version/apache http server/2.0.46
• version/apache http server/2.0.54
• version/apache http server/2.0.43
• version/apache http server/2.0.59
• version/apache http server/2.0.28
• version/apache http server/2.0
• version/apache http server/2.0.32-beta
• version/apache http server/2.0.60
• version/apache http server/2.2.11
• version/apache http server/2.2.0
• version/apache http server/2.2.10
• version/apache http server/2.2.13
• version/apache http server/2.2.2
• version/apache http server/2.2.4
• version/apache http server/2.2.16
• version/apache http server/2.2.21
• version/apache http server/2.2.8
• version/apache http server/2.2.14
• version/apache http server/2.2.6
• version/apache http server/2.2.19
• version/apache http server/2.2.9
• version/apache http server/2.2.18
• version/apache http server/2.2.12
• version/apache http server/2.2.3
• version/apache http server/2.2.15
• version/apache http server/2.2.20
• version/apache http server/2.2.1
• package-manager/redhat