Security Database IT Watching - Alert Detail

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

INFORMATION

Name	:	CVE-2010-0010	First Publication	:	2010-02-02
Severity	:	Medium	Last Modification	:	2010-05-20

SCORING CVSS v2

Cvss Base Score	:	6.8	Attack Range	:	Network
Cvss Impact Score	:	6.4	Attack Complexity	:	Medium
Cvss Expoit Score	:	8.6	Authentification	:	None Required
Calculate full CVSS 2.0 Vectors scores

DETAIL

Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size that triggers a heap-based buffer overflow.

CWE COMMON WEAKNESS ENUMERATION

CWE-189 - Numeric Errors (CWE/SANS Top 25)

OVALID

oval:org.mitre.oval:def:7923, Apache 1.3 mod_proxy HTTP Chunked Encoding Integer Overflow Vulnerability

oval:org.mitre.oval:def:8565, Apache HTTP Server 1.3.x is installed on the system

CPE COMMON PLATFORM ENUMERATION

Application : Apache Http server (46)

OPEN SOURCE VULNERABILTY DATABASE (OSVDB)

62009 : Apache HTTP Server src/modules/proxy/proxy_util.c mod_proxy ap_proxy_send_fb() Function Overflow.

SECONDARY(S) SOURCE(S)

Source : BID
Url : http://www.securityfocus.com/bid/37966

Source : BUGTRAQ
Url : http://www.securityfocus.com/archive/1/archive/1/509185/100/0/threaded

Source : CONFIRM
Url : http://httpd.apache.org/dev/dist/CHANGES_1.3.42

Source : FULLDISC
Url : http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0589.html

Source : MISC
Url : http://blog.pi3.com.pl/?p=69
Url : http://packetstormsecurity.org/1001-exploits/modproxy-overflow.txt
Url : http://site.pi3.com.pl/adv/mod_proxy.txt

Source : SECTRACK
Url : http://www.securitytracker.com/id?1023533

Source : SECUNIA
Url : http://secunia.com/advisories/38319
Url : http://secunia.com/advisories/39656

Source : SUSE
Url : http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00006.html

Source : VUPEN
Url : http://www.vupen.com/english/advisories/2010/0240
Url : http://www.vupen.com/english/advisories/2010/1001

Source : XF
Url : http://xforce.iss.net/xforce/xfdb/55941