[27028] in bugtraq
bugtraq.c httpd apache ssl attack
daemon@ATHENA.MIT.EDU (Fernando Nunes)
Fri Sep 13 13:18:10 2002
Date: 13 Sep 2002 13:55:17 -0000
Message-ID: <20020913135517.28304.qmail@mail.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: Fernando Nunes <fmcn@netcabo.pt>
To: bugtraq@securityfocus.com
I am using RedHat 7.3 with Apache 1.3.23. Someone used the
program "bugtraq.c" to explore an modSSL buffer overflow to get access to
a shell. The attack creates a file named "/tmp/.bugtraq.c" and compiles it
using gcc. The program is started with another computer ip address as
argument. All computer files that the user "apache" can read are exposed.
The program attacks the following Linux distributions:
Red-Hat: Apache 1.3.6,1.3.9,1.3.12,1.3.19,1.3.20,1.3.22,1.3.23,1.3.26
SuSe: Apache 1.3.12,1.3.17,1.3.19,1.3.20,1.3.23
Mandrake: 1.3.14,1.3.19
Slakware: Apache 1.3.26
Regards
Fernando Nunes
Portugal
