FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2011-4317

This CVE name corresponds to:

Entered Topic
2012-01-31 apache -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2011-4317
Phase Assigned(20111104)

Description

The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an @ (at sign) character and a : (colon) character in invalid positions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.

References

Source Reference
MISC https://community.qualys.com/blogs/securitylabs/2011/11/23/apache-reverse-proxy-bypass-issue
CONFIRM http://thread.gmane.org/gmane.comp.apache.devel/46440
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=756483
CONFIRM http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
CONFIRM http://support.apple.com/kb/HT5501
CONFIRM http://kb.juniper.net/JSA10585
APPLE APPLE-SA-2012-09-19-2
HP HPSBMU02786
HP SSRT100877
HP HPSBOV02822
HP SSRT100966
MANDRIVA MDVSA-2012:003
MANDRIVA MDVSA-2013:150
REDHAT RHSA-2012:0128
SUSE openSUSE-SU-2013:0243
SUSE openSUSE-SU-2013:0248
SECTRACK 1026353
SECUNIA 48551