Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-200907-02
HistoryJul 02, 2009 - 12:00 a.m.

ModSecurity: Denial of service

2009-07-0200:00:00
Gentoo Foundation
security.gentoo.org
14

0.036 Low

EPSS

Percentile

91.7%

JSON

Background

ModSecurity is a popular web application firewall for the Apache HTTP server.

Description

Multiple vulnerabilities were discovered in ModSecurity:

  • Juan Galiana Lara of ISecAuditors discovered a NULL pointer dereference when processing multipart requests without a part header name (CVE-2009-1902).
  • Steve Grubb of Red Hat reported that the “PDF XSS protection” feature does not properly handle HTTP requests to a PDF file that do not use the GET method (CVE-2009-1903).

Impact

A remote attacker might send requests containing specially crafted multipart data or send certain requests to access a PDF file, possibly resulting in a Denial of Service (crash) of the Apache HTTP daemon. NOTE: The PDF XSS protection is not enabled by default.

Workaround

There is no known workaround at this time.

Resolution

All ModSecurity users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=www-apache/mod_security-2.5.9"
OSVersionArchitecturePackageVersionFilename
Gentooanyallwww-apache/mod_security< 2.5.9UNKNOWN

Related

openvas 12
securityvulns 2
nessus 4
cve 2
cvelist 2
ubuntucve 2
prion 2
openvas
openvas
Mandrake Security Advisory MDVSA-2009:184 (apache-mod_security)
2009-08-17 00:00:00
Fedora Core 10 FEDORA-2009-2686 (mod_security)
2009-03-20 00:00:00
ModSecurity Multiple Remote Denial of Service Vulnerabilities
2009-06-16 00:00:00
securityvulns
securityvulns
ModSecurity multiple security vulnerabilities
2009-07-03 00:00:00
[ GLSA 200907-02 ] ModSecurity: Denial of Service
2009-07-03 00:00:00
nessus
nessus
Fedora 10 : mod_security-2.5.9-1.fc10 (2009-2686)
2009-04-23 00:00:00
GLSA-200907-02 : ModSecurity: Denial of Service
2009-07-03 00:00:00
Fedora 9 : mod_security-2.5.9-1.fc9 (2009-2654)
2009-03-16 00:00:00
cve
cve
CVE-2009-1902
2009-06-03 17:00:00
CVE-2009-1903
2009-06-03 17:00:00
cvelist
cvelist
CVE-2009-1903
2009-06-03 16:33:00
CVE-2009-1902
2009-06-03 16:33:00
ubuntucve
ubuntucve
CVE-2009-1903
2009-06-03 00:00:00
CVE-2009-1902
2009-06-03 00:00:00
prion
prion
Null pointer dereference
2009-06-03 17:00:00
Design/Logic Flaw
2009-06-03 17:00:00

0.036 Low

EPSS

Percentile

91.7%

JSON
Related for GLSA-200907-02
openvas12securityvulns2nessus4cve2cvelist2ubuntucve2prion2