(IBM Issues Fix for IBM HTTP Server for OS/400) Apache mod_proxy/mod_rewrite Bug Lets Remote Users Access Internal Servers
|
|
SecurityTracker Alert ID: 1026997 |
|
SecurityTracker URL: http://securitytracker.com/id/1026997
|
|
CVE Reference:
CVE-2011-4317
(Links to External Site)
|
Date: May 1 2012
|
Impact:
Host/resource access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
|
Description:
A vulnerability was reported in Apache. A remote user can access internal servers. IBM HTTP Server is affected.
When this system is configured in reverse proxy mode and uses the RewriteRule or ProxyPassMatch directives with a pattern match, a remote user can send a specially crafted request to access internal servers.
Prutha Parikh from Qualys reported this vulnerability.
|
Impact:
A remote user can access internal servers.
|
Solution:
IBM has issued a fix for IBM HTTP Server for OS/400 (APARs SE51505, SI46401).
The IBM advisories are available at:
http://www-01.ibm.com/support/docview.wss?uid=nas2394373277328c954862579cd003c709c
http://www-01.ibm.com/support/docview.wss?uid=nas39578294f523b4b8c862579dd00751bce
|
Cause:
Access control error, Input validation error
|
Underlying OS:
OS/400
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Tue, 01 May 2012 02:56:35 +0000
Subject: http://www-01.ibm.com/support/docview.wss?uid=nas2394373277328c954862579cd003c709c
|
http://www-01.ibm.com/support/docview.wss?uid=nas2394373277328c954862579cd003c709c
http://www-01.ibm.com/support/docview.wss?uid=nas39578294f523b4b8c862579dd00751bce
SE51505 - HTTPSVR - Follow up fix for CVE-2011-4317
SI46401 - HTTPSVR - Follow up fix for CVE-2011-4317
APARs SE51505, SI46401
|
|
