Apache HTTP Server 'ap_pregsub()'function local denial of service vulnerability-vulnerability warning-the black bar safety net

Affected system: Apache Group The Apache 2.2. x Description: -------------------------------------------------------------------------------- BUGTRAQ ID: 5 0 6 3 9 CVE ID: CVE-2 0 1 1-4 4 1 5 Apache HTTP Server is the Apache Software Foundation an open source web server, you can In most...

CVE-2011-3607

Integer overflow in the appregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the modsetenvif module is enabled, allows local users to gain privileges via a .htaccess file with a crafted SetEnvIf directive, in conjunction with a crafted...

CVE-2011-4415

The appregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the modsetenvif module is enabled, does not restrict the size of values of environment variables, which allows local users to cause a denial of service memory consumption or NULL...

CVE-2011-3607

Integer overflow in the appregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the modsetenvif module is enabled, allows local users to gain privileges via a .htaccess file with a crafted SetEnvIf directive, in conjunction with a crafted...