VULHUB ™

A vulnerability has been discovered in the mod_security Apache 2 module. The problem occurs while handling large amounts of data transfered via server-side scripts. Due to insufficient bounds checking when handling the data, it may be possible for a malicious script to cause heap memory be to corrupted. This could potentially allow for the execution of arbitrary code with the privileges of the Apache web server. It should be emphasized that the condition cannot occur by transmitting large amounts of memory to the affected server. The malicious data must be sent out from the server in order for the vulnerability to be triggered.

A vulnerability has been discovered in the mod_security Apache 2 module. The problem occurs while handling large amounts of data transfered via server-side scripts. Due to insufficient bounds checking when handling the data, it may be possible for a malicious script to cause heap memory be to corrupted. This could potentially allow for the execution of arbitrary code with the privileges of the Apache web server. It should be emphasized that the condition cannot occur by transmitting large amounts of memory to the affected server. The malicious data must be sent out from the server in order for the vulnerability to be triggered.