Trend Micro Security

Apache Tomcat mod_jk2 Remote Stack Overflow

  危険度: :
  CVE識別番号: CVE-2007-6258

  概要

Multiple stack-based buffer overflows in the legacy mod_jk2 2.0.3-DEV and earlier Apache module allow remote attackers to execute arbitrary code via a long (1) Host header, or (2) Hostname within a Host header.

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1002388
  Trend Micro Deep Security DPI Rule Name: 1002388 - Apache Tomcat mod_jk2 Remote Stack Overflow

  影響を受けるソフトウェア

  • Apache Software Foundation mod jk 2.0
  • Apache Software Foundation mod jk 2.0.1
  • Apache Software Foundation mod jk 2.0.2
  • Apache Software Foundation mod jk 2.0.3_dev
  • F5 big-ip 9.2.3.30