CVE-2007-6258
CVE-2007-6258
Multiple stack-based buffer overflows in the legacy mod_jk2 2.0.3-DEV and earlier Apache module allow remote attackers to execute arbitrary code via a long (1) Host header, or (2) Hostname within a Host header.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/5330unverifiedcve_referencewww.exploit-db.com/exploits/5386unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://securityreason.com/securityalert/3661https://www.exploit-db.com/exploits/5330https://www.exploit-db.com/exploits/5386http://www.ioactive.com/pdfs/mod_jk2.pdfhttp://www.ioactive.com/vulnerabilities/mod_jk2LegacyBufferOverflowAdvisory.pdfhttp://www.kb.cert.org/vuls/id/771937http://www.securityfocus.com/archive/1/487983/100/100/threadedhttp://www.securityfocus.com/bid/27752http://www.vupen.com/english/advisories/2008/0572