Vulnerability Description
The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pack Professional 8.11.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Http Server | >= 2.0.35, < 2.0.64 |
| Fedoraproject | Fedora | 10 |
| Debian | Debian Linux | 4.0 |
| Opensuse | Opensuse | 10.3 |
| Suse | Linux Enterprise Desktop | 10 |
| Suse | Linux Enterprise Server | 9 |
| Apple | Mac Os X | < 10.6.3 |
References
- http://intevydis.com/vd-list.shtmlBroken Link
- http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00006.htmlMailing ListThird Party Advisory
- http://marc.info/?l=bugtraq&m=126998684522511&w=2Issue TrackingMailing ListThird Party Advisory
- http://marc.info/?l=bugtraq&m=127557640302499&w=2Issue TrackingMailing ListThird Party Advisory
- http://marc.info/?l=bugtraq&m=130497311408250&w=2Not ApplicableThird Party Advisory
- http://marc.info/?l=bugtraq&m=133355494609819&w=2Issue TrackingMailing ListThird Party Advisory
- http://secunia.com/advisories/37152Not ApplicableThird Party Advisory
- http://support.apple.com/kb/HT4077Third Party Advisory
- http://wiki.rpath.com/Advisories:rPSA-2009-0155Broken Link
- http://www.debian.org/security/2009/dsa-1934Third Party Advisory
- http://www.securityfocus.com/archive/1/508075/100/0/threadedThird Party AdvisoryVDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=522209Issue TrackingThird Party Advisory
- https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e0593
- https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181e
FAQ
What is CVE-2009-3095?
CVE-2009-3095 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of t...
How severe is CVE-2009-3095?
CVE-2009-3095 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3095?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Http Server, Fedoraproject Fedora, Debian Debian Linux, Opensuse Opensuse, Suse Linux Enterprise Desktop.