9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.668 Medium
EPSS
Percentile
97.9%
Severity: High
Date : 2017-06-28
CVE-ID : CVE-2017-3167 CVE-2017-3169 CVE-2017-7659 CVE-2017-7668
CVE-2017-7679
Package : apache
Type : multiple issues
Remote : Yes
Link : https://security.archlinux.org/AVG-316
The package apache before version 2.4.26-1 is vulnerable to multiple
issues including denial of service, information disclosure and
authentication bypass.
Upgrade to 2.4.26-1.
The problems have been fixed upstream in version 2.4.26.
None.
An authentication bypass flaw has been found in Apache httpd < 2.4.26,
where the use of the ap_get_basic_auth_pw() function by third-party
modules outside of the authentication phase may lead to authentication
requirements being bypassed. Third-party module writers SHOULD use
ap_get_basic_auth_components(), available in 2.2.33 and 2.4.26, instead
of ap_get_basic_auth_pw(). Modules which call the legacy
ap_get_basic_auth_pw() during the authentication phase MUST either
immediately authenticate the user after the call, or else stop the
request immediately with an error response, to avoid incorrectly
authenticating the current request.
A NULL-pointer dereference leading to denial of service has been found
in the mod_ssl component of Apache httpd < 2.4.26. mod_ssl may
dereference a NULL pointer when third-party modules call
ap_hook_process_connection() during an HTTP request to an HTTPS port.
A NULL-pointer dereference leading to denial of service has been found
in the mod_http2 component of Apache httpd < 2.4.26. A maliciously
constructed HTTP/2 request could cause mod_http2 to dereference a NULL
pointer and crash the server process.
An out-of-bounds read has been found in Apache httpd < 2.4.26. The HTTP
strict parsing changes added in 2.2.32 and 2.4.24 introduced a bug in
token list parsing, which allows ap_find_token() to search past the end
of its input string. By maliciously crafting a sequence of request
headers, an attacker may be able to cause a segmentation fault, or to
force ap_find_token() to return an incorrect value.
An out-of-bounds read has been found in Apache httpd < 2.4.26, where
mod_mime can read one byte past the end of a buffer when a malicious
Content-Type response header is sent.
A remote attacker can crash an apache server or obtain sensitive
information from the host by performing a maliciously-crafted HTTP
request. In addition, a malicious attacker can bypass a serverโs
authentication requirements via maliciously-crafted request headers.
https://httpd.apache.org/security/vulnerabilities_24.html
https://www.apache.org/dist/httpd/patches/apply_to_2.2.32/CVE-2017-3167.patch
https://security.archlinux.org/CVE-2017-3167
https://security.archlinux.org/CVE-2017-3169
https://security.archlinux.org/CVE-2017-7659
https://security.archlinux.org/CVE-2017-7668
https://security.archlinux.org/CVE-2017-7679
httpd.apache.org/security/vulnerabilities_24.html
security.archlinux.org/AVG-316
security.archlinux.org/CVE-2017-3167
security.archlinux.org/CVE-2017-3169
security.archlinux.org/CVE-2017-7659
security.archlinux.org/CVE-2017-7668
security.archlinux.org/CVE-2017-7679
www.apache.org/dist/httpd/patches/apply_to_2.2.32/CVE-2017-3167.patch
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.668 Medium
EPSS
Percentile
97.9%