FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2011-3368

This CVE name corresponds to:

Entered Topic
2012-01-31 apache -- multiple vulnerabilities
2011-11-14 Apache 1.3 -- mod_proxy reverse proxy exposure

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2011-3368
Phase Assigned(20110830)

Description

The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character.

References

Source Reference
EXPLOIT-DB 17969
FULLDISC 20111005 Apache HTTP Server: mod_proxy reverse proxy exposure (CVE-2011-3368)
FULLDISC 20111005 Context IS Advisory - Apache Reverse Proxy Bypass Vulnerability
MLIST [announce] 20111005 Advisory: mod_proxy reverse proxy exposure (CVE-2011-3368)
MISC http://www.contextis.com/research/blog/reverseproxybypass/
CONFIRM http://svn.apache.org/viewvc?view=revision&revision=1179239
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=740045
CONFIRM http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
CONFIRM http://support.apple.com/kb/HT5501
CONFIRM http://kb.juniper.net/JSA10585
CONFIRM http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
AIXAPAR SE49723
AIXAPAR SE49724
APPLE APPLE-SA-2012-09-19-2
HP HPSBOV02822
HP SSRT100966
MANDRIVA MDVSA-2011:144
MANDRIVA MDVSA-2013:150
REDHAT RHSA-2011:1391
REDHAT RHSA-2011:1392
SUSE SUSE-SU-2011:1229
SUSE openSUSE-SU-2013:0243
SUSE openSUSE-SU-2013:0248
BID 49957
OSVDB 76079
SECTRACK 1026144
SECUNIA 46288
SECUNIA 46414
SECUNIA 48551
XF apache-modproxy-information-disclosure(70336)