Executive Summary
| Informations | |||
|---|---|---|---|
| Name | MDVSA-2009:183 | First vendor Publication | 2009-07-31 |
| Vendor | Mandriva | Last vendor Modification | 2009-07-31 |
| Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 7.8 | Attack Range | Network |
| Cvss Impact Score | 6.9 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Multiple vulnerabilities has been found and corrected in mod_security: Multiple unspecified vulnerabilities in the ModSecurity (aka mod_security) module 2.5.0 through 2.5.5 for the Apache HTTP Server, when SecCacheTransformations is enabled, allow remote attackers to cause a denial of service (daemon crash) or bypass the product's functionality via unknown vectors related to transformation caching. (CVE-2008-5676) The multipart processor in ModSecurity before 2.5.9 allows remote attackers to cause a denial of service (crash) via a multipart form datapost request with a missing part header name, which triggers a NULL pointer dereference (CVE-2009-1902). The PDF XSS protection feature in ModSecurity before 2.5.8 allows remote attackers to cause a denial of service (Apache httpd crash) via a request for a PDF file that does not use the GET method (CVE-2009-1903). This update provides mod_security 2.5.9, which is not vulnerable to these issues. |
Original Source
| Url : http://www.mandriva.com/security/advisories?name=MDVSA-2009:183 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-476 | NULL Pointer Dereference |
CPE : Common Platform Enumeration
OpenVAS Exploits
| Date | Description |
|---|---|
| 2009-08-17 | Name : Mandrake Security Advisory MDVSA-2009:183 (apache-mod_security) File : nvt/mdksa_2009_183.nasl |
| 2009-08-17 | Name : Mandrake Security Advisory MDVSA-2009:184 (apache-mod_security) File : nvt/mdksa_2009_184.nasl |
| 2009-07-06 | Name : Gentoo Security Advisory GLSA 200907-02 (mod_security) File : nvt/glsa_200907_02.nasl |
| 2009-06-16 | Name : ModSecurity Multiple Remote Denial of Service Vulnerabilities File : nvt/gb_modesecurity_remote_dos_vuln.nasl |
| 2009-03-20 | Name : Fedora Core 9 FEDORA-2009-2654 (mod_security) File : nvt/fcore_2009_2654.nasl |
| 2009-03-20 | Name : Fedora Core 10 FEDORA-2009-2686 (mod_security) File : nvt/fcore_2009_2686.nasl |
| 2008-12-31 | Name : ModSecurity 'SecCacheTransformations' Security Bypass Vulnerability File : nvt/secpod_modsecurity_sec_bypass_vuln.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 52553 | ModSecurity (mod_security) Multipart Request Header Name Handling DoS |
| 52552 | ModSecurity (mod_security) PDF XSS Protection Implementation Crafted HTTP Req... |
| 48848 | ModSecurity (mod_security) Transformation Caching Unspecified Filter Evasion |
| 48847 | ModSecurity (mod_security) Transformation Caching Unspecified Apache DoS |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2013-07-02 | Name : The remote web application firewall may be affected by a denial of service vu... File : modsecurity_2_5_9.nasl - Type : ACT_GATHER_INFO |
| 2009-07-03 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200907-02.nasl - Type : ACT_GATHER_INFO |
| 2009-04-23 | Name : The remote Fedora host is missing a security update. File : fedora_2009-2686.nasl - Type : ACT_GATHER_INFO |
| 2009-03-16 | Name : The remote Fedora host is missing a security update. File : fedora_2009-2654.nasl - Type : ACT_GATHER_INFO |
