CVE-2002-1156
CVSS5.0
发布时间 :2002-10-11 00:00:00
修订时间 :2008-09-05 16:29:55
NMCOS    

[原文]Apache 2.0.42 allows remote attackers to view the source code of a CGI script via a POST request to a directory with both WebDAV and CGI enabled.


[CNNVD]Apache 2 WebDAV CGI POST请求信息泄漏漏洞(CNNVD-200210-252)

        
        Apache是一款开放源代码WEB服务程序。
        Apache中存在信息泄漏漏洞,起因是对CGI脚本执行了不充分的检查。仅在对文件夹启用了WebDAV和CGI的情况下才会出现这个漏洞。
        攻击者可以通过向CGI脚本发送POST请求来利用这个漏洞。由于WebDAV和CGI脚本之间不正确的交互,可能导致Web server向远程攻击者返回CGI脚本的内容。
        

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1156
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1156
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200210-252
(官方数据源) CNNVD

- 其它链接及资源

http://www.kb.cert.org/vuls/id/910713
(UNKNOWN)  CERT-VN  VU#910713
http://xforce.iss.net/xforce/xfdb/10499
(VENDOR_ADVISORY)  XF  apache-webdav-cgi-source(10499)
http://www.apacheweek.com/issues/02-10-04
(VENDOR_ADVISORY)  CONFIRM  http://www.apacheweek.com/issues/02-10-04
http://www.apache.org/dist/httpd/CHANGES_2.0
(VENDOR_ADVISORY)  CONFIRM  http://www.apache.org/dist/httpd/CHANGES_2.0
http://www.securityfocus.com/bid/6065
(UNKNOWN)  BID  6065
http://online.securityfocus.com/advisories/4617
(UNKNOWN)  HP  HPSBUX0210-224

- 漏洞信息

Apache 2 WebDAV CGI POST请求信息泄漏漏洞
中危 其他
2002-10-11 00:00:00 2005-05-13 00:00:00
远程  
        
        Apache是一款开放源代码WEB服务程序。
        Apache中存在信息泄漏漏洞,起因是对CGI脚本执行了不充分的检查。仅在对文件夹启用了WebDAV和CGI的情况下才会出现这个漏洞。
        攻击者可以通过向CGI脚本发送POST请求来利用这个漏洞。由于WebDAV和CGI脚本之间不正确的交互,可能导致Web server向远程攻击者返回CGI脚本的内容。
        

- 公告与补丁

        临时解决方法:
        如果您不能立刻安装补丁或者升级,CNNVD建议您采取以下措施以降低威胁:
        厂商补丁:
        Apache Group
        ------------
        目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载2.0.43版本:
        
        http://httpd.apache.org/download.cgi

        HP
        --
        HP已经为此发布了一个安全公告(HPSBUX0210-224)以及相应补丁:
        HPSBUX0210-224:SSRT2393 rev.2 HP-UX Apache Vulnerabilities
        链接:
        http://www-1.ibm.com/services/continuity/recover1.nsf/mss/MSS-OAR-E01-2004.0928.1

- 漏洞信息

9702
Apache HTTP Server CGI/WebDAV HTTP POST Request Source Disclosure
Remote / Network Access Information Disclosure
Loss of Confidentiality Upgrade
Vendor Verified

- 漏洞描述

- 时间线

2002-09-26 Unknow
Unknow Unknow

- 解决方案

Upgrade to version 2.0.43 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Apache 2 WebDAV CGI POST Request Information Disclosure Vulnerability
Failure to Handle Exceptional Conditions 6065
Yes No
2002-10-29 12:00:00 2009-07-11 06:06:00
Vulnerability first detailed in the product changelog.

- 受影响的程序版本

HP VirtualVault 4.6
- HP HP-UX 11.0 4
HP VirtualVault 4.5
- HP HP-UX 11.0 4
HP OpenView Network Node Manager 6.2 Solaris
- Sun Solaris 2.5.1
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6
HP OpenView Network Node Manager 6.2 HP-UX 11.X
- HP HP-UX 11.11
- HP HP-UX 11.0
HP OpenView Network Node Manager 6.2 HP-UX 10.X
- HP HP-UX 10.20
HP HP-UX 11.22
HP HP-UX 11.20
HP HP-UX 11.11
HP HP-UX 11.0
Apache Software Foundation Apache 2.0.42
+ Gentoo Linux 1.4 _rc1
+ Gentoo Linux 1.2
Apache Software Foundation Apache 2.0.41
Apache Software Foundation Apache 2.0.40
+ RedHat Linux 9.0 i386
+ RedHat Linux 8.0
+ Terra Soft Solutions Yellow Dog Linux 3.0
Apache Software Foundation Apache 2.0.39
Apache Software Foundation Apache 2.0.38
Apache Software Foundation Apache 2.0.37
Apache Software Foundation Apache 2.0.36
Apache Software Foundation Apache 2.0.35
Apache Software Foundation Apache 2.0
HP OpenView Network Node Manager 5.0.2 Windows NT 3.51/4.0
HP OpenView Network Node Manager 5.0 1 Solaris
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6
- Sun Solaris 2.5
- Sun Solaris 2.4
HP OpenView Network Node Manager 5.0 1 HP-UX
- HP HP-UX 10.34
- HP HP-UX 10.30
- HP HP-UX 10.20
- HP HP-UX 10.16
- HP HP-UX 10.10
- HP HP-UX 10.9
- HP HP-UX 10.8
- HP HP-UX 10.1 0
- HP HP-UX 10.0 1
- HP HP-UX 10.0
- HP HP-UX (VVOS) 10.24
HP OpenView Network Node Manager 5.0 1
- HP HP-UX 11.0
- HP HP-UX 10.20
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6
Apache Software Foundation Apache 2.0.43

- 不受影响的程序版本

HP OpenView Network Node Manager 5.0.2 Windows NT 3.51/4.0
HP OpenView Network Node Manager 5.0 1 Solaris
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6
- Sun Solaris 2.5
- Sun Solaris 2.4
HP OpenView Network Node Manager 5.0 1 HP-UX
- HP HP-UX 10.34
- HP HP-UX 10.30
- HP HP-UX 10.20
- HP HP-UX 10.16
- HP HP-UX 10.10
- HP HP-UX 10.9
- HP HP-UX 10.8
- HP HP-UX 10.1 0
- HP HP-UX 10.0 1
- HP HP-UX 10.0
- HP HP-UX (VVOS) 10.24
HP OpenView Network Node Manager 5.0 1
- HP HP-UX 11.0
- HP HP-UX 10.20
- Sun Solaris 8_sparc
- Sun Solaris 7.0
- Sun Solaris 2.6
Apache Software Foundation Apache 2.0.43

- 漏洞讨论

An information disclosure vulnerability has been for Apache. The vulnerability occurs due to inadequate checks being performed on CGI scripts. This vulnerability exists only when both WebDAV and CGI are enabled for folders.

An attacker can exploit this vulnerability by making a POST request to a CGI script. Due to improper interaction between WebDAV and CGI scripts, this will result in the Web server returning the contents of the CGI script to the remote attacker.

- 漏洞利用

There is no exploit code required.

- 解决方案

Apache 2.0.43 is not vulnerable to this issue:

HP has released a security bulletin. Customers of HP-UX are advised to download Apache 2.0.43.00 product bundles from:

http://www.software.hp.com/ISS_products_list.html

HP has advised NNM (Network Node Manager) customers to refrain from installing these product bundles. Further details are available in the referenced advisory.

Fixes available:


HP HP-UX 11.0

HP HP-UX 11.11

HP HP-UX 11.20

HP HP-UX 11.22

Apache Software Foundation Apache 2.0

Apache Software Foundation Apache 2.0.35

Apache Software Foundation Apache 2.0.36

Apache Software Foundation Apache 2.0.37

Apache Software Foundation Apache 2.0.38

Apache Software Foundation Apache 2.0.39

Apache Software Foundation Apache 2.0.40

Apache Software Foundation Apache 2.0.41

Apache Software Foundation Apache 2.0.42

HP VirtualVault 4.5

HP VirtualVault 4.6

HP OpenView Network Node Manager 6.2 Solaris

HP OpenView Network Node Manager 6.2 HP-UX 11.X

HP OpenView Network Node Manager 6.2 HP-UX 10.X

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站