Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0456

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2008-0456
Last Modified 06 Feb 2013 10:53:05
Published 24 Jan 2008 08:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2008-0456

Summary

CRLF injection vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks by uploading a file with a multi-line name containing HTTP header sequences and a file extension, which leads to injection within a (1) "406 Not Acceptable" or (2) "300 Multiple Choices" HTTP response when the extension is omitted in a request for the file.

Vulnerable Systems

Application

  • Apache Http Server 1.3.39

  • Apache Http Server 2.0.61

  • Apache Http Server 2.2.6


References

CERT - TA09-133A

XF - apache-modnegotiation-response-splitting(39893)

VUPEN - ADV-2009-1297

BID - 27409

BUGTRAQ - 20080122 Apache mod_negotiation Xss and Http Response Splitting

MISC - http://www.mindedsecurity.com/MSA01150108.html

CONFIRM - http://support.apple.com/kb/HT3549

SECTRACK - 1019256

SREASON - 3575

GENTOO - GLSA-200803-19

SECUNIA - 35074

SECUNIA - 29348

APPLE - APPLE-SA-2009-05-12

REDHAT - RHSA-2013:0130

Related Patches

Apple 2009-05-12 Mac OS X 10.5.7 Combo Update

Apple 2009-05-12 Mac OS X Server 10.5.7 Update

Apple 2009-05-12 Mac OS X 10.5.7 Update

Apple 2009-05-12 Mac OS X Server 10.5.7 Combo Update

Red Hat 2013:0130-01 RHSA Low: httpd security, bug fix, and enhancement update for RHEL 5 x86


Last Updated: 27 May 2016 10:53:46