CVE-2007-6258
published 2008-02-19CVE-2007-6258: Multiple stack-based buffer overflows in the legacy mod_jk2 2.0.3-DEV and earlier Apache module allow remote attackers to execute arbitrary code via a long (1)…
PriorityP358high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
40.85%
98.5th percentile
Multiple stack-based buffer overflows in the legacy mod_jk2 2.0.3-DEV and earlier Apache module allow remote attackers to execute arbitrary code via a long (1) Host header, or (2) Hostname within a Host header.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | mod_jk | — | — |
| apache | mod_jk | — | — |
| apache | mod_jk | — | — |
| apache | mod_jk | — | — |
| f5 | big-ip | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://securityreason.com/securityalert/3661http://www.ioactive.com/pdfs/mod_jk2.pdfhttp://www.ioactive.com/vulnerabilities/mod_jk2LegacyBufferOverflowAdvisory.pdfhttp://www.kb.cert.org/vuls/id/771937http://www.securityfocus.com/archive/1/487983/100/100/threadedhttp://www.securityfocus.com/bid/27752http://www.vupen.com/english/advisories/2008/0572https://www.exploit-db.com/exploits/5330https://www.exploit-db.com/exploits/5386http://securityreason.com/securityalert/3661http://www.ioactive.com/pdfs/mod_jk2.pdfhttp://www.ioactive.com/vulnerabilities/mod_jk2LegacyBufferOverflowAdvisory.pdfhttp://www.kb.cert.org/vuls/id/771937http://www.securityfocus.com/archive/1/487983/100/100/threadedhttp://www.securityfocus.com/bid/27752http://www.vupen.com/english/advisories/2008/0572https://www.exploit-db.com/exploits/5330https://www.exploit-db.com/exploits/5386
2008-02-19
Published