| Vulnerability: |
Apache Chunked-Encoding Memory Corruption
Vulnerability
Qualys ID : 86352
CVE ID : CVE-2002-0392
Port : 80 |
| Diagnosis: |
Apache is a freely available Web
server for Unix and Linux variants, as well as Microsoft operating
systems. Various products, such as StrongHold, Oracle 9iAS and IBM
Websphere, use or bundle Apache.
The HTTP protocol specifies
a method of data coding called 'Chunked Encoding', designed to
facilitate fragmentation of HTTP requests in transit. A
vulnerability has been discovered in the Apache implementation of
'Chunked Encoding'. When processing requests coded with the 'Chunked
Encoding' mechanism, Apache fails to properly calculate required
buffer sizes. This is due to improper (signed) interpretation of an
unsigned integer value.
On Windows and Netware platforms,
Apache uses threads within a single server process to handle
concurrent connections. Causing the server process to crash on these
platforms may result in a denial of service.
The link
http://httpd.apache.org/info/security_bulletin_20020617.txt provides additional information on
this vulnerability for Apache running on
Windows.
|
| Consequences: |
This vulnerability can be exploited by an
attacker to cause a Denial of Service and even execute arbitrary
code on the vulnerable machine. |
| Solution: |
This vulnerability has been fixed in
Apache 1.3.26 and Apache 2.0.37. Please upgrade to the latest version.
An efix (via APAR
PQ62369) is available
for IHS from the IBM HTTP Server Downloads webpage.
A
complete list of vendor status and fixes can be found in CERT advisory
CA-2002-17
|
| Result: |
Detailed result listings are provided
in the Free 7-day
Trial
|
| ^ back to top |
|
5