CVE-2011-3639 — MEDIUM (4.3)

Vulnerability Description

The mod_proxy module in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x before 2.2.18, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers by using the HTTP/0.9 protocol with a malformed URI containing an initial @ (at sign) character. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Apache	Http Server	2.0.11
Apache	Http Server2.0A1	All versions
Apache	Http Server2.0A2	All versions
Apache	Http Server2.0A3	All versions
Apache	Http Server2.0A4	All versions
Apache	Http Server2.0A5	All versions
Apache	Http Server2.0A6	All versions
Apache	Http Server2.0A7	All versions
Apache	Http Server2.0A8	All versions
Apache	Http Server2.0A9	All versions

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2011-3639?

CVE-2011-3639 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The mod_proxy module in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x before 2.2.18, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2)...

How severe is CVE-2011-3639?

CVE-2011-3639 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2011-3639?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Http Server, Apache Http Server2.0A1, Apache Http Server2.0A2, Apache Http Server2.0A3, Apache Http Server2.0A4.