Apache HTTP Server Worker Process Multiple Denial of Service Vulnerabilities
BID:24215
Info
Apache HTTP Server Worker Process Multiple Denial of Service Vulnerabilities
| Bugtraq ID: | 24215 |
| Class: | Design Error |
| CVE: |
CVE-2007-3304 |
| Remote: | Yes |
| Local: | Yes |
| Published: | May 29 2007 12:00AM |
| Updated: | Aug 05 2010 09:15PM |
| Credit: | The PSNC Security Team is credited with discovering these vulnerabilities. |
| Vulnerable: |
VMWare Workstation 6.5.2 VMWare Workstation 6.5.1 VMWare Player 2.5.2 VMWare Player 2.5.1 VMWare ACE 2.5.2 VMWare ACE 2.5.1 Ubuntu Ubuntu Linux 7.04 sparc Ubuntu Ubuntu Linux 7.04 powerpc Ubuntu Ubuntu Linux 7.04 i386 Ubuntu Ubuntu Linux 7.04 amd64 Ubuntu Ubuntu Linux 6.10 sparc Ubuntu Ubuntu Linux 6.10 powerpc Ubuntu Ubuntu Linux 6.10 i386 Ubuntu Ubuntu Linux 6.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 Turbolinux Turbolinux Server 10.0 x86 Turbolinux Turbolinux Server 10.0.0 x64 Turbolinux FUJI 0 Turbolinux Appliance Server 2.0 Trustix Secure Linux 3.0.5 Trustix Secure Linux 3.0 Trustix Secure Linux 2.2 Trustix Operating System Enterprise Server 2.0 SuSE SUSE Linux Enterprise Server 9 SuSE SUSE Linux Enterprise Server 10 SP1 SuSE SUSE Linux Enterprise SDK 10.SP1 SuSE SUSE Linux Enterprise SDK 10 SuSE openSUSE 10.3 Sun Solaris 9_x86 Sun Solaris 9_sparc Sun Solaris 8_x86 Sun Solaris 8_sparc Sun Solaris 10_x86 SGI ProPack 3.0 SP6 S.u.S.E. openSUSE 10.2 S.u.S.E. Open-Enterprise-Server 0 S.u.S.E. Novell Linux POS 9 S.u.S.E. Novell Linux Desktop SDK 9.0 S.u.S.E. Novell Linux Desktop 9.0 S.u.S.E. Linux Professional 10.0 OSS S.u.S.E. Linux Professional 10.1 S.u.S.E. Linux Personal 10.0 OSS S.u.S.E. Linux Personal 10.1 rPath rPath Linux 1 RedHat Network Satellite (for RHEL 4) 4.2 RedHat Network Proxy (for RHEL 3) 4.2 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux WS 2.1 IA64 RedHat Enterprise Linux WS 2.1 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux ES 2.1 IA64 RedHat Enterprise Linux ES 2.1 RedHat Enterprise Linux Desktop Workstation 5 client RedHat Desktop 4.0 RedHat Desktop 3.0 RedHat Certificate Server 7.3 RedHat Advanced Workstation for the Itanium Processor 2.1 IA64 RedHat Advanced Workstation for the Itanium Processor 2.1 Red Hat Red Hat Network Satellite Server 5.0 Red Hat Network Satellite (for RHEL 3) 4.2 Red Hat Network Proxy (for RHEL 4) 5.0 Red Hat Network Proxy (for RHEL 4) 4.2 Red Hat Enterprise Linux Desktop 5 client Red Hat Enterprise Linux AS 4 Red Hat Enterprise Linux AS 3 Red Hat Enterprise Linux AS 2.1 IA64 Red Hat Enterprise Linux AS 2.1 Red Hat Enterprise Linux 5 Server Mandriva Linux Mandrake 2007.1 x86_64 Mandriva Linux Mandrake 2007.1 Mandriva Linux Mandrake 2007.0 x86_64 Mandriva Linux Mandrake 2007.0 MandrakeSoft Multi Network Firewall 2.0 MandrakeSoft Corporate Server 4.0 x86_64 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 MandrakeSoft Corporate Server 4.0 IBM Websphere Application Server 6.0.1 IBM HTTP Server 6.1.0.13 IBM HTTP Server 6.0.2.23 HP HP-UX B.11.31 HP HP-UX B.11.23 HP HP-UX B.11.11 Gentoo Linux Fujitsu INTERSTAGE Studio Standard-J Edition 9.0 Fujitsu INTERSTAGE Studio Standard-J Edition 8.0.1 Fujitsu INTERSTAGE Studio Enterprise Edition 9.0 Fujitsu INTERSTAGE Studio Enterprise Edition 8.0.1 Fujitsu INTERSTAGE Job Workload Server 8.1 Fujitsu INTERSTAGE Business Application Server Enterprise 8.0.0 Fujitsu INTERSTAGE Apworks Standard-J Edition 8.0 Fujitsu INTERSTAGE Apworks Modelers-J Edition 7.0 Fujitsu INTERSTAGE Apworks Modelers-J Edition 6.0A Fujitsu INTERSTAGE Apworks Modelers-J Edition 6.0 Fujitsu INTERSTAGE Apworks Enterprise Edition 8.0 Fujitsu iNTERSTAGE Application Server Web-J Edition 5.0 Fujitsu INTERSTAGE Application Server Standard-J Edition 9.0 A Fujitsu INTERSTAGE Application Server Standard-J Edition 9.0 Fujitsu INTERSTAGE Application Server Standard-J Edition 8.0.2 Fujitsu INTERSTAGE Application Server Standard-J Edition 8.0.1 Fujitsu INTERSTAGE Application Server Standard-J Edition 8.0 Fujitsu iNTERSTAGE Application Server Standard Edition 5.0 Fujitsu INTERSTAGE Application Server Plus Developer 5.0.1 Fujitsu INTERSTAGE Application Server Plus Developer 7.0 Fujitsu INTERSTAGE Application Server Plus Developer 6.0 Fujitsu Interstage Application Server Plus 7.0.1 Fujitsu Interstage Application Server Plus 5.0.1 Fujitsu Interstage Application Server Plus 7.0 Fujitsu Interstage Application Server Plus 6.0 Fujitsu INTERSTAGE Application Server Enterprise Edition 9.0 A Fujitsu INTERSTAGE Application Server Enterprise Edition 9.0 Fujitsu INTERSTAGE Application Server Enterprise Edition 8.0.2 Fujitsu INTERSTAGE Application Server Enterprise Edition 8.0.1 Fujitsu INTERSTAGE Application Server Enterprise Edition 8.0 Fujitsu INTERSTAGE Application Server Enterprise Edition 7.0.1 Fujitsu INTERSTAGE Application Server Enterprise Edition 5.0.1 Fujitsu INTERSTAGE Application Server Enterprise Edition 7.0 Fujitsu INTERSTAGE Application Server Enterprise Edition 6.0A Fujitsu INTERSTAGE Application Server Enterprise Edition 6.0 Fujitsu INTERSTAGE Application Server Enterprise Edition 5.0 Avaya SES 2.0 Avaya Messaging Storage Server MM3.0 Avaya Messaging Storage Server 2.0 Avaya Messaging Storage Server 1.0 Avaya Messaging Storage Server Avaya Message Networking MN 3.1 Avaya Message Networking Avaya Intuity LX 2.0 Avaya Intuity LX Avaya Interactive Response 1.3 Avaya Interactive Response 3.0 Avaya Interactive Response 2.0 Avaya EMMC 1.021 Avaya EMMC 1.017 Avaya EMMC 0 Avaya Communication Manager 2.0.1 Avaya Communication Manager 2.0 Avaya Communication Manager 4.0 Avaya Communication Manager 3.1 Avaya Communication Manager 3.0 Avaya Aura SIP Enablement Services 3.1.1 Avaya Aura SIP Enablement Services 3.0 Avaya Aura Application Enablement Services 4.0.1 Avaya Aura Application Enablement Services 3.1.3 Avaya Aura Application Enablement Services 4.0 Avaya Aura Application Enablement Services 3.1 Avaya Aura Application Enablement Services 3.0 Apache Software Foundation MPM Prefork 0 Apache Software Foundation Apache 2.2.4 Apache Software Foundation Apache 2.0.59 Apache Software Foundation Apache 1.3.37 |
| Not Vulnerable: |
Apache Software Foundation Apache 2.2.6 Apache Software Foundation Apache 2.3.38-dev Apache Software Foundation Apache 2.0.60-dev |
Discussion
Apache HTTP Server Worker Process Multiple Denial of Service Vulnerabilities
Apache is prone to multiple denial-of-service vulnerabilities.
An attacker with the ability to execute arbitrary server-side script-code can exploit these issues to stop arbitrary services on the affected computer in the context of the master webserver process; other attacks may also be possible.
Apache is prone to multiple denial-of-service vulnerabilities.
An attacker with the ability to execute arbitrary server-side script-code can exploit these issues to stop arbitrary services on the affected computer in the context of the master webserver process; other attacks may also be possible.
Exploit / POC
Apache HTTP Server Worker Process Multiple Denial of Service Vulnerabilities
An attacker must have the ability to exploit arbitrary code in a worker process to exploit this issue. This may be accomplished through exploiting other latent vulnerabilities (e.g. remote file-include issues).
An attacker must have the ability to exploit arbitrary code in a worker process to exploit this issue. This may be accomplished through exploiting other latent vulnerabilities (e.g. remote file-include issues).
Solution / Fix
Apache HTTP Server Worker Process Multiple Denial of Service Vulnerabilities
Solution:
The vendor released fixes to address these issues. Please see the references for more information.
Sun Solaris 8_sparc
HP HP-UX B.11.23
HP HP-UX B.11.11
Solution:
The vendor released fixes to address these issues. Please see the references for more information.
Sun Solaris 8_sparc
HP HP-UX B.11.23
-
HP HPUXWSA-B218-01-1123-32.depot
ftp://ssrt1476:[email protected]/ -
HP HPUXWSA-B218-01-1123-64.depot
ftp://ssrt1476:[email protected]/
HP HP-UX B.11.11
-
HP HPUXWSA-B218-01-1111ipv4.depot
ftp://ssrt1476:[email protected]/ -
HP HPUXWSA-B218-01-1111ipv6.depot
ftp://ssrt1476:[email protected]/
References
Apache HTTP Server Worker Process Multiple Denial of Service Vulnerabilities
References:
References:
- Apache Homepage (Apache Software Foundation)
- Apache httpd 1.3 vulnerabilities (Apache)
- Apache httpd 2.0 vulnerabilities (Apache Software Foundation)
- Apache httpd 2.2 vulnerabilities (Apache Software Foundation)
- ASA-2008-012 - Security Vulnerabilities in the Apache 1.3 and 2.0 Web Server (Avaya)
- Changes with Apache 2.2.6 (Apache)
- [security bulletin] HPSBUX02273 SSRT071476 rev.2 - HP-UX Running Apache, Remote ([email protected])
- Apache httpd vulnerabilities (Blazej Miga
) - TSLSA-2007-0026 - multi (Trustix)
- Solution 200032 : Security Vulnerabilities in the Apache 1.3 and 2.0 Web Ser (Sun Microsystems)
- ASA-2007-363 - httpd security update (RHSA-2007-0662) (Avaya)
- Avaya Security Advisory ASA-2007-353 (Avaya)
- Cross site scripting (XSS) and denial of service (DoS) vulnerabilities in Inters (Fujitsu)
- IBM PK50467: CVE-2007-3304 MPM SIGNALLING VULNERABILITY (IBM)
- PK52702: Z/OS IBM HTTP SERVER FOR WEBSPHERE (POWERED BY APACHE) FIX PACK 6.1.0.1 (IBM)
- PK53984: SHIP APAR FIXES FOR H28W601 FIX PACK 6.0.2.23. (IBM)
- RHSA-2007:0532-2 apache security update (Red Hat)
- RHSA-2007:0556-2 httpd security update (Red Hat)
- RHSA-2007:0662-2 httpd security update (Red Hat)
- RHSA-2008:0261-4 Moderate: Red Hat Network Satellite Server security update (Red Hat)
- RHSA-2008:0263-2 Red Hat Network Proxy Server security update (Red Hat)
- RHSA-2008:0523-1 Low: Red Hat Network Proxy Server security update (Red Hat)
- RHSA-2008:0524-4 Low: Red Hat Network Satellite Server security update (Red Hat)
- Sun Alert ID: 103179 Security Vulnerabilities in the Apache 1.3 and 2.0 Web Serv (Sun)