Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-5031

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2009-5031
Last Modified 11 Sep 2013 10:58:20
Published 22 Jul 2012 12:55:17
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-5031

Summary

ModSecurity before 2.5.11 treats request parameter values containing single quotes as files, which allows remote attackers to bypass filtering rules and perform other attacks such as cross-site scripting (XSS) attacks via a single quote in a request parameter in the Content-Disposition field of a request with a multipart/form-data Content-Type header.

Vulnerable Systems

Application

  • Modsecurity 2.0.0

  • Modsecurity 2.0.1

  • Modsecurity 2.0.2

  • Modsecurity 2.0.3

  • Modsecurity 2.0.4

  • Modsecurity 2.1.0

  • Modsecurity 2.1.1

  • Modsecurity 2.1.2

  • Modsecurity 2.1.3

  • Modsecurity 2.1.4

  • Modsecurity 2.1.5

  • Modsecurity 2.1.6

  • Modsecurity 2.5.0

  • Modsecurity 2.5.1

  • Modsecurity 2.5.10

  • Modsecurity 2.5.2

  • Modsecurity 2.5.3

  • Modsecurity 2.5.4

  • Modsecurity 2.5.5

  • Modsecurity 2.5.6

  • Modsecurity 2.5.7

  • Modsecurity 2.5.8

  • Modsecurity 2.5.9


References

CONFIRM - https://www.modsecurity.org/fisheye/browse/modsecurity/m2/branches/2.5.x/apache2/msc_multipart.c?r2=1419&r1=1366

MISC - http://www.suspekt.org/downloads/POC2009-ShockingNewsInPHPExploitation.pdf

BID - 54156

MLIST - [oss-security] 20120621 Re: mod_security CVE request

MLIST - [oss-security] 20120621 mod_security CVE request

SECUNIA - 49576

CONFIRM - http://mod-security.svn.sourceforge.net/viewvc/mod-security/m2/branches/2.6.x/CHANGES

MISC - http://blog.ivanristic.com/2012/06/modsecurity-and-modsecurity-core-rule-set-multipart-bypasses.html

SUSE - openSUSE-SU-2013:1342

SUSE - openSUSE-SU-2013:1336

SUSE - openSUSE-SU-2013:1331


Last Updated: 27 May 2016 10:54:56