Search, View and Navigation
Mailing List
[SingCERT] Multiple vulnerabilties in Apache HTTP Server
Last Updated on Tuesday, 09 March 2010 15:10
[ Summary ]
Apache is prone to multiple security vulnerabilities; fixes are available.
mod_isapi module unload flaw CVE-2010-0425
The issue exists in the ‘mod_isapi’ Apache module which implements the Internet Server Application Programming Interface (ISAPI) and is available for Microsoft Windows. Specifically, a crafted HTTP request can cause the ‘mod_isapi’ module to be improperly unloaded, leaving dangling function pointers. This condition may be exploited on subsequent HTTP requests to execute arbitrary code with SYSTEM-level privileges.
Subrequest handling of request headers (mod_headers) CVE-2010-0434
Specifically the issue arises during the handling of headers in subrequests. This issue presents itself when multi-threaded Multi-Processing Mode (MPM) is used, potentially allowing a thread to obtain unauthorized access to sensitive memory.
mod_proxy_ajp DoS CVE-2010-0408
mod_proxy_ajp would return the wrong status code if it encountered an error, causing a backend server to be put into an error state until the retry timeout expired. A remote attacker could send malicious requests to trigger this issue, resulting in denial of service.
[ Affected System ]
Apache versions prior to 2.2.15 are affected.
[ Impact Analysis ]
Attackers can leverage this issue to gain access to sensitive information; attacks may also result in denial-of-service conditions.
Attackers can leverage this vulnerability to execute arbitrary code with SYSTEM-level privileges; failed attacks may result in denial-of-service conditions.
[ Solution/Workaround ]
The vendor released updates to address this issue. Please see the reference for more information.
[ Reference ]
- http://httpd.apache.org/security/vulnerabilities_22.html
- http://httpd.apache.org/
| < Prev | Next > |
|---|