Executive Summary
Summary | |
---|---|
Title | mod_perl security update |
Informations | |||
---|---|---|---|
Name | RHSA-2007:0486 | First vendor Publication | 2007-06-18 |
Vendor | RedHat | Last vendor Modification | 2007-06-18 |
Severity (Vendor) | Moderate | Revision | 01 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:N/I:N/A:P) | |||
---|---|---|---|
Cvss Base Score | 4.3 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Problem Description: Updated mod_perl packages that fix a security issue are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64 Red Hat Linux Advanced Workstation 2.1 - ia64 Red Hat Enterprise Linux ES version 2.1 - i386 Red Hat Enterprise Linux WS version 2.1 - i386 3. Problem description: Mod_perl incorporates a Perl interpreter into the Apache web server, so that the Apache HTTP server can directly execute Perl code. The Apache::PerlRun module was found to not properly escape PATH_INFO before being used in a regular expression. If a server is configured to use Apache::PerlRun, an attacker could request a carefully crafted URI causing resource consumption, which could lead to a denial of service (CVE-2007-1349). Users of mod_perl should update to these erratum packages which contain a backported fix to correct this issue. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at http://kbase.redhat.com/faq/FAQ_58_10188 5. Bug IDs fixed (http://bugzilla.redhat.com/): 240423 - CVE-2007-1349 mod_perl PerlRun denial of service |
Original Source
Url : https://rhn.redhat.com/errata/RHSA-2007-0486.html |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-20 | Improper Input Validation |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10987 | |||
Oval ID: | oval:org.mitre.oval:def:10987 | ||
Title: | PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI. | ||
Description: | PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2007-1349 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:21702 | |||
Oval ID: | oval:org.mitre.oval:def:21702 | ||
Title: | ELSA-2007:0395: mod_perl security update (Low) | ||
Description: | PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2007:0395-02 CVE-2007-1349 | Version: | 6 |
Platform(s): | Oracle Linux 5 | Product(s): | mod_perl |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:8349 | |||
Oval ID: | oval:org.mitre.oval:def:8349 | ||
Title: | Security Vulnerabilities in the Apache 2 "mod_perl2" Module Components "PerlRun.pm" May Lead to Denial of Service (DoS) or Unauthorized Access to Data | ||
Description: | PerlRun.pm in Apache mod_perl before 1.30, and RegistryCooker.pm in mod_perl 2.x, does not properly escape PATH_INFO before use in a regular expression, which allows remote attackers to cause a denial of service (resource consumption) via a crafted URI. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2007-1349 | Version: | 2 |
Platform(s): | Sun Solaris 10 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 3 | |
Application | 1 | |
Os | 3 | |
Os | 3 | |
Os | 1 | |
Os | 3 | |
Os | 3 |
OpenVAS Exploits
Date | Description |
---|---|
2009-10-10 | Name : SLES9: Security update for mod_perl File : nvt/sles9p5019089.nasl |
2009-04-24 | Name : Mod_Perl Path_Info Remote Denial Of Service Vulnerability File : nvt/modperl_cve_2007_1349.nasl |
2009-04-09 | Name : Mandriva Update for apache-mod_perl MDKSA-2007:083 (apache-mod_perl) File : nvt/gb_mandriva_MDKSA_2007_083.nasl |
2009-03-23 | Name : Ubuntu Update for libapache2-mod-perl2 vulnerability USN-488-1 File : nvt/gb_ubuntu_USN_488_1.nasl |
2009-02-27 | Name : Fedora Update for mod_perl FEDORA-2007-0316 File : nvt/gb_fedora_2007_0316_mod_perl_fc7.nasl |
2009-02-27 | Name : Fedora Update for mod_perl FEDORA-2007-576 File : nvt/gb_fedora_2007_576_mod_perl_fc5.nasl |
2009-02-27 | Name : Fedora Update for mod_perl FEDORA-2007-577 File : nvt/gb_fedora_2007_577_mod_perl_fc6.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200705-04 (mod_perl) File : nvt/glsa_200705_04.nasl |
2008-09-04 | Name : FreeBSD Ports: mod_perl File : nvt/freebsd_mod_perl.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
34541 | mod_perl for Apache HTTP Server RegistryCooker.pm PATH_INFO Crafted URI Remot... The mod_perl module for Apache HTTP Server contains a flaw that may allow a remote attacker to cause a denial of service. The issue is due to the RegistryCooker.pm script not properly escaping the PATH_INFO variable before use in a regular expression. With specially crafted requests, an attacker can exhaust resources and cause the server to stop responding. |
34540 | mod_perl for Apache HTTP Server PerlRun.pm PATH_INFO Crafted URI Remote DoS The mod_perl module for Apache HTTP Server contains a flaw that may allow a remote attacker to cause a denial of service. The issue is due to the PerlRun.pm script not properly escaping the PATH_INFO variable before use in a regular expression. With specially crafted requests, an attacker can exhaust resources and cause the server to stop responding. |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2007-0395.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2008-0627.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0523.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0263.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20070614_mod_perl_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
2010-01-10 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0630.nasl - Type : ACT_GATHER_INFO |
2010-01-10 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0524.nasl - Type : ACT_GATHER_INFO |
2010-01-10 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2008-0261.nasl - Type : ACT_GATHER_INFO |
2009-09-24 | Name : The remote SuSE 9 host is missing a security-related patch. File : suse9_11496.nasl - Type : ACT_GATHER_INFO |
2007-11-10 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-488-1.nasl - Type : ACT_GATHER_INFO |
2007-11-06 | Name : The remote Fedora host is missing a security update. File : fedora_2007-0316.nasl - Type : ACT_GATHER_INFO |
2007-06-18 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2007-0486.nasl - Type : ACT_GATHER_INFO |
2007-06-18 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2007-0395.nasl - Type : ACT_GATHER_INFO |
2007-06-14 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2007-0395.nasl - Type : ACT_GATHER_INFO |
2007-06-12 | Name : The remote Fedora Core host is missing a security update. File : fedora_2007-577.nasl - Type : ACT_GATHER_INFO |
2007-06-12 | Name : The remote Fedora Core host is missing a security update. File : fedora_2007-576.nasl - Type : ACT_GATHER_INFO |
2007-05-03 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200705-04.nasl - Type : ACT_GATHER_INFO |
2007-04-30 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_ef2ffb03f2b011dbad250010b5a0a860.nasl - Type : ACT_GATHER_INFO |
2007-04-12 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2007-083.nasl - Type : ACT_GATHER_INFO |
2006-07-18 | Name : The remote host is missing Sun Security Patch number 122911-37 File : solaris10_122911.nasl - Type : ACT_GATHER_INFO |
2006-07-18 | Name : The remote host is missing Sun Security Patch number 122912-37 File : solaris10_x86_122912.nasl - Type : ACT_GATHER_INFO |
2004-10-17 | Name : The remote host is missing Sun Security Patch number 116973-07 File : solaris8_116973.nasl - Type : ACT_GATHER_INFO |
2004-10-17 | Name : The remote host is missing Sun Security Patch number 116974-07 File : solaris8_x86_116974.nasl - Type : ACT_GATHER_INFO |
2004-07-12 | Name : The remote host is missing Sun Security Patch number 113146-13 File : solaris9_113146.nasl - Type : ACT_GATHER_INFO |
2004-07-12 | Name : The remote host is missing Sun Security Patch number 114145-12 File : solaris9_x86_114145.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:50:45 |
|