Intrusion Prevention

Apache.APR.PSPrintf.Memory.Corruption

Description

This indicates an attack attempt against a memory-corruption vulnerability in Apache Portable Runtime (APR) library.
The vulnerability is caused by an error when the vulnerable software handles a malicious WebDAV request. It allows a remote attacker to execute arbitrary code via sending a crafted web page.

Affected Products

Apache Portable Runtime (APR) library for Apache 2.0.37 through 2.0.45

Impact

System Compromise

Recommended Actions

Upgrade to version above Apache HTTP Server 2.0.46.

CVE References

CVE-2003-0245