CVE-2010-0408 - The ap_proxy_ajp_request function in mod_proxy_ajp.c in mod_proxy_ajp in the Apache HTTP Server 2.2.

CVE-2010-0408

Summary

The ap_proxy_ajp_request function in mod_proxy_ajp.c in mod_proxy_ajp in the Apache HTTP Server 2.2.x before 2.2.15 does not properly handle certain situations in which a client sends no request body, which allows remote attackers to cause a denial of service (backend server outage) via a crafted request, related to use of a 500 error code instead of the appropriate 400 error code.

References

Vulnerable Configurations

cpe:2.3:a:apache:http_server:2.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.11:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.13:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.13:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.8:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.14:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.14:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.12:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.12:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:apache:http_server:2.2.3:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 01-11-2023 - 15:32)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

oval via4

accepted

2014-07-14T04:01:30.549-04:00

class

vulnerability

contributors

name J. Daniel Brown
organization DTCC
name Mike Lah
organization The MITRE Corporation
name Shane Shaffer
organization G2, Inc.
name Maria Mikhno
organization ALTX-SOFT

definition_extensions

comment	Apache HTTP Server 2.2.x is installed on the system
oval	oval:org.mitre.oval:def:8550

description

family

windows

oval:org.mitre.oval:def:8619

status

accepted

submitted

2010-03-08T17:30:00.000-05:00

title

Apache mod_proxy_ajp Module Incoming Request Body Denial Of Service Vulnerability

version

accepted

2013-04-29T04:23:26.979-04:00

class

vulnerability

contributors

name Aharon Chernin
organization SCAP.com, LLC
name Dragos Prisaca
organization G2, Inc.

definition_extensions

comment The operating system installed on the system is Red Hat Enterprise Linux 5
oval oval:org.mitre.oval:def:11414
comment The operating system installed on the system is CentOS Linux 5.x
oval oval:org.mitre.oval:def:15802
comment Oracle Linux 5.x
oval oval:org.mitre.oval:def:15459

description

family

unix

oval:org.mitre.oval:def:9935

status

accepted

submitted

2010-07-09T03:56:16-04:00

title

version

redhat via4

advisories

rhsa

id	RHSA-2010:0168

rpms

httpd-0:2.2.3-31.el5_4.4
httpd-debuginfo-0:2.2.3-31.el5_4.4
httpd-devel-0:2.2.3-31.el5_4.4
httpd-manual-0:2.2.3-31.el5_4.4
mod_ssl-1:2.2.3-31.el5_4.4
httpd-0:2.2.14-1.2.6.jdk6.ep5.el5
httpd-debuginfo-0:2.2.14-1.2.6.jdk6.ep5.el5
httpd-devel-0:2.2.14-1.2.6.jdk6.ep5.el5
httpd-manual-0:2.2.14-1.2.6.jdk6.ep5.el5
httpd22-0:2.2.14-11.jdk6.ep5.el4
httpd22-apr-0:2.2.14-11.jdk6.ep5.el4
httpd22-apr-devel-0:2.2.14-11.jdk6.ep5.el4
httpd22-apr-util-0:2.2.14-11.jdk6.ep5.el4
httpd22-apr-util-devel-0:2.2.14-11.jdk6.ep5.el4
httpd22-debuginfo-0:2.2.14-11.jdk6.ep5.el4
httpd22-devel-0:2.2.14-11.jdk6.ep5.el4
httpd22-manual-0:2.2.14-11.jdk6.ep5.el4
mod_ssl-1:2.2.14-1.2.6.jdk6.ep5.el5
mod_ssl22-1:2.2.14-11.jdk6.ep5.el4

refmap via4

aixapar	PM08939 PM12247 PM15829
apple	APPLE-SA-2010-11-10-1
bid	38491
confirm	http://httpd.apache.org/security/vulnerabilities_22.html http://support.apple.com/kb/HT4435 http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/modules/proxy/mod_proxy_ajp.c?r1=917876&r2=917875&pathrev=917876 http://svn.apache.org/viewvc?view=revision&revision=917876 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html https://bugzilla.redhat.com/show_bug.cgi?id=569905
debian	DSA-2035
fedora	FEDORA-2010-5942 FEDORA-2010-6131
hp	HPSBUX02531 SSRT100108
mandriva	MDVSA-2010:053 MDVSA-2013:150
mlist	[httpd-cvs] 20190815 svn commit: r1048742 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html [httpd-cvs] 20190815 svn commit: r1048743 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html [httpd-cvs] 20200401 svn commit: r1058586 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html [httpd-cvs] 20200401 svn commit: r1058587 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html
secunia	39100 39501 39628 39632 39656 40096
suse	SUSE-SR:2010:010
vupen	ADV-2010-0911 ADV-2010-0994 ADV-2010-1001 ADV-2010-1057 ADV-2010-1411

Last major update

01-11-2023 - 15:32

Published

05-03-2010 - 16:30

Last modified

01-11-2023 - 15:32