Vulnerability Description
protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors involving a (1) long or (2) malformed header in conjunction with crafted web script.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Http Server | >= 2.0.0, < 2.0.65 |
| Debian | Debian Linux | 5.0 |
| Opensuse | Opensuse | 11.4 |
| Suse | Linux Enterprise Server | 10 |
| Suse | Linux Enterprise Software Development Kit | 10 |
| Redhat | Storage | 2.0 |
| Redhat | Enterprise Linux Desktop | 6.0 |
| Redhat | Enterprise Linux Eus | 6.2 |
| Redhat | Enterprise Linux Server | 6.0 |
| Redhat | Enterprise Linux Workstation | 6.0 |
| Redhat | Jboss Enterprise Web Server | 1.0.0 |
| Redhat | Enterprise Linux | 5.0 |
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041Broken Link
- http://httpd.apache.org/security/vulnerabilities_22.htmlVendor Advisory
- http://kb.juniper.net/JSA10585Third Party Advisory
- http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.htmlBroken LinkMailing List
- http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00026.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00002.htmlMailing ListThird Party Advisory
- http://marc.info/?l=bugtraq&m=133294460209056&w=2Issue TrackingMailing ListThird Party Advisory
- http://marc.info/?l=bugtraq&m=133494237717847&w=2Issue TrackingMailing ListThird Party Advisory
- http://marc.info/?l=bugtraq&m=133951357207000&w=2Issue TrackingMailing ListThird Party Advisory
- http://marc.info/?l=bugtraq&m=136441204617335&w=2Issue TrackingMailing ListThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2012-0128.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2012-0542.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2012-0543.htmlThird Party Advisory
- http://secunia.com/advisories/48551Not Applicable
- http://support.apple.com/kb/HT5501Third Party Advisory
FAQ
What is CVE-2012-0053?
CVE-2012-0053 is a vulnerability with a CVSS score of 4.3 (MEDIUM). protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to o...
How severe is CVE-2012-0053?
CVE-2012-0053 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-0053?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Http Server, Debian Debian Linux, Opensuse Opensuse, Suse Linux Enterprise Server, Suse Linux Enterprise Software Development Kit.