CVE-2006-3747

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 28-07-2006 08:02

Last modified: - 19-01-2023 09:14

Total changes: - 4

Description

Off-by-one error in the ldap scheme handling in the Rewrite module (mod_rewrite) in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted URLs that are not properly handled using certain rewrite rules.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:H/Au:N/C:C/I:C/A:C

High

Attack complexity

Network

Attack vector

High

Availability

High

Confidentiality

High

Integrity

Privileges required

Scope

User interaction

7.6

Base score

4.9

10.0

Exploitability score

Impact score

Verification logic

Reference

http://www.apache.org/dist/httpd/Announcement2.0.html
http://svn.apache.org/viewvc?view=rev&revision=426144
VU#395412-Third Party Advisory, US Government Resource
USN-328-1-Third Party Advisory
20060728 Apache 1.3.29/2.X mod_rewrite Buffer Overflow Vulnerability CVE-2006-3747-Third Party Advisory
20060728 [Announcement] Apache HTTP Server 2.2.3 (2.0.59, 1.3.37) Released-Mailing List, Third Party Advisory
OpenPKG-SA-2006.015-Third Party Advisory
SUSE-SA:2006:043-Third Party Advisory
19204-Third Party Advisory, VDB Entry
1016601-Third Party Advisory, VDB Entry
21197-Broken Link
21241-Broken Link
http://kbase.redhat.com/faq/FAQ_68_8653.shtm
DSA-1131-Patch, Third Party Advisory
DSA-1132-Patch, Third Party Advisory
GLSA-200608-01-Third Party Advisory
21245-Broken Link
21266-Broken Link
21273-Broken Link
21284-Broken Link
21313-Broken Link
https://issues.rpath.com/browse/RPL-538
PK27875-Third Party Advisory
PK29154-Third Party Advisory
PK29156-Third Party Advisory
27588-Broken Link
21307-Broken Link
21315-Broken Link
21247-Broken Link
21478-Broken Link
21509-Broken Link
22262-Broken Link
102662-Broken Link
102663-Broken Link
22368-Broken Link
22388-Broken Link
http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3117
22523-Broken Link
http://www-1.ibm.com/support/docview.wss?uid=swg27007951
23028-Broken Link
23260-Broken Link
2006-0044-Mailing List, Third Party Advisory
21346-Broken Link
MDKSA-2006:133-Broken Link
26329-Broken Link
1312-Third Party Advisory
http://docs.info.apple.com/article.html?artnum=307562
APPLE-SA-2008-03-18-Mailing List, Third Party Advisory
29420-Broken Link
29849-Broken Link
APPLE-SA-2008-05-28-Mailing List, Third Party Advisory
TA08-150A-Third Party Advisory, US Government Resource
30430-Broken Link
ADV-2008-1697-Permissions Required
ADV-2006-3995-Permissions Required
ADV-2006-4300-Permissions Required
ADV-2006-3017-Permissions Required
ADV-2006-3264-Permissions Required
ADV-2008-0924-Permissions Required
ADV-2006-4207-Permissions Required
SSRT071293-Third Party Advisory
ADV-2007-2783-Permissions Required
ADV-2006-3282-Permissions Required
HPSBMA02250-Third Party Advisory
ADV-2006-4015-Permissions Required
ADV-2006-4868-Permissions Required
ADV-2008-1246-Permissions Required
ADV-2006-3884-Permissions Required
SSRT090208-Mailing List, Third Party Advisory
apache-modrewrite-offbyone-bo(28063)-Third Party Advisory, VDB Entry
SSRT061265-Third Party Advisory, VDB Entry
HPSBUX02145-Third Party Advisory, VDB Entry
20060820 POC & exploit for Apache mod_rewrite off-by-one-Third Party Advisory, VDB Entry
20060728 rPSA-2006-0139-1 httpd mod_ssl-Third Party Advisory, VDB Entry
20060728 Apache mod_rewrite Buffer Overflow Vulnerability-Third Party Advisory, VDB Entry
20060728 [Announcement] Apache HTTP Server 2.2.3 (2.0.59, 1.3.37) Released-Third Party Advisory, VDB Entry
[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.html security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html-Vendor Advisory
[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.html security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html-Vendor Advisory
[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.html security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html-Vendor Advisory
[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.html security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html-Vendor Advisory
[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/-Vendor Advisory
[httpd-cvs] 20210330 svn commit: r1073140 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html-Vendor Advisory
[httpd-cvs] 20210330 svn commit: r1888194 [4/13] - /httpd/site/trunk/content/security/json/-Vendor Advisory
[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/-Vendor Advisory
[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/-Vendor Advisory
[httpd-cvs] 20210330 svn commit: r1073146 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities-httpd.html security/vulnerabilities_22.html security/vulnerabilities_24.html-Vendor Advisory
[httpd-cvs] 20210330 svn commit: r1073139 [4/13] - in /websites/staging/httpd/trunk/content: ./ security/json/-Vendor Advisory
[httpd-cvs] 20210606 svn commit: r1075470 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html-Vendor Advisory
[httpd-cvs] 20210330 svn commit: r1073149 [5/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/-Vendor Advisory
[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html-Vendor Advisory

Keywords

CVE-2006-3747

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2006-3747

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures