Rapid7 Vulnerability & Exploit Database

SUSE Linux Security Vulnerability: CVE-2006-3747

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

SUSE Linux Security Vulnerability: CVE-2006-3747

Severity

CVSS

(AV:N/AC:H/Au:N/C:C/I:C/A:C)

Published

07/28/2006

Created

07/25/2018

Added

02/17/2015

Modified

07/04/2017

Description

Off-by-one error in the ldap scheme handling in the Rewrite module (mod_rewrite) in Apache 1.3 from 1.3.28, 2.0.46 and other versions before 2.0.59, and 2.2, when RewriteEngine is enabled, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted URLs that are not properly handled using certain rewrite rules.

Solution(s)

suse-upgrade-apache
suse-upgrade-apache2
suse-upgrade-apache2-devel
suse-upgrade-apache2-doc
suse-upgrade-apache2-example-pages
suse-upgrade-apache2-mod_php5
suse-upgrade-apache2-prefork
suse-upgrade-apache2-worker
suse-upgrade-mod_ssl
suse-upgrade-php5-bcmath
suse-upgrade-php5-bz2
suse-upgrade-php5-calendar
suse-upgrade-php5-ctype
suse-upgrade-php5-curl
suse-upgrade-php5-dba
suse-upgrade-php5-dbase
suse-upgrade-php5-devel
suse-upgrade-php5-dom
suse-upgrade-php5-exif
suse-upgrade-php5-fastcgi
suse-upgrade-php5-filepro
suse-upgrade-php5-ftp
suse-upgrade-php5-gd
suse-upgrade-php5-gettext
suse-upgrade-php5-gmp
suse-upgrade-php5-iconv
suse-upgrade-php5-imap
suse-upgrade-php5-ldap
suse-upgrade-php5-mbstring
suse-upgrade-php5-mcrypt
suse-upgrade-php5-mhash
suse-upgrade-php5-mysql
suse-upgrade-php5-mysqli
suse-upgrade-php5-ncurses
suse-upgrade-php5-odbc
suse-upgrade-php5-openssl
suse-upgrade-php5-pcntl
suse-upgrade-php5-pdo
suse-upgrade-php5-pear
suse-upgrade-php5-pgsql
suse-upgrade-php5-posix
suse-upgrade-php5-pspell
suse-upgrade-php5-shmop
suse-upgrade-php5-snmp
suse-upgrade-php5-soap
suse-upgrade-php5-sockets
suse-upgrade-php5-sqlite
suse-upgrade-php5-sysvmsg
suse-upgrade-php5-sysvsem
suse-upgrade-php5-sysvshm
suse-upgrade-php5-tokenizer
suse-upgrade-php5-wddx
suse-upgrade-php5-xmlreader
suse-upgrade-php5-xmlrpc
suse-upgrade-php5-xsl
suse-upgrade-php5-zlib

References

https://attackerkb.com/topics/cve-2006-3747
APPLE-SA-2008-03-18
APPLE-SA-2008-05-28
19204
TA08-150A
395412
CVE - 2006-3747
DSA-1131
DSA-1132
27588
SUSE-SA:2006:043
28063

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

SUSE Linux Security Vulnerability: CVE-2006-3747

SUSE Linux Security Vulnerability: CVE-2006-3747

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Success! Thank you for submission. We will be in touch shortly.

Submit your information and we will get in touch with you.