Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:29:59 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1065753997&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F1003-advisories%2FSOS-10-002.txt%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1065753997.1338179399.1338179399.1338179399.1%3B%2B__utmz%3D32867617.1338179399.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/86963/SOS-10-002.txt http://packetstormsecurity.org/files/86963/SOS-10-002.txt http://packetstormsecurity.org/files/86963/Apache-2.2.14-mod_isapi-Dangling-Pointer.html Sat, 06 Mar 2010 16:09:03 GMT By sending a specially crafted request followed by a reset packet it is possible to trigger a vulnerability in Apache 2.2.14 mod_isapi that will unload the target ISAPI module from memory. However function pointers still remain in memory and are called when published ISAPI functions are referenced. This results in a dangling pointer vulnerability. Successful exploitation results in the execution of arbitrary code with SYSTEM privileges.