Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2004-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2003-050.NASL
HistoryJul 31, 2004 - 12:00 a.m.

Mandrake Linux Security Advisory : apache2 (MDKSA-2003:050)

2004-07-3100:00:00
This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.
www.tenable.com
42
JSON

A memory leak was discovered in Apache 2.0 through 2.0.44 that can allow a remote attacker to cause a significant denial of service (DoS) by sending requests containing a lot of linefeed characters to the server.

As well, Apache does not filter terminal escape sequences from its log files, which could make it easy for an attacker to insert those sequences into the error and access logs, which could possibly be viewed by certain terminal emulators with vulnerabilities related to escape sequences.

After upgrading these packages, be sure to restart the httpd server by executing :

service httpd restart

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2003:050. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(14034);
  script_version("1.17");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2003-0020", "CVE-2003-0083", "CVE-2003-0132");
  script_xref(name:"MDKSA", value:"2003:050");

  script_name(english:"Mandrake Linux Security Advisory : apache2 (MDKSA-2003:050)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A memory leak was discovered in Apache 2.0 through 2.0.44 that can
allow a remote attacker to cause a significant denial of service (DoS)
by sending requests containing a lot of linefeed characters to the
server.

As well, Apache does not filter terminal escape sequences from its log
files, which could make it easy for an attacker to insert those
sequences into the error and access logs, which could possibly be
viewed by certain terminal emulators with vulnerabilities related to
escape sequences.

After upgrading these packages, be sure to restart the httpd server by
executing :

service httpd restart"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache2-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache2-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache2-manual");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache2-mod_dav");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache2-mod_ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache2-mod_ssl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache2-modules");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache2-source");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libapr0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:9.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2003/04/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/31");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2004-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"apache2-2.0.45-4.2mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"apache2-common-2.0.45-4.2mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"apache2-devel-2.0.45-4.2mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"apache2-manual-2.0.45-4.2mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"apache2-mod_dav-2.0.45-4.2mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"apache2-mod_ldap-2.0.45-4.2mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"apache2-mod_ssl-2.0.45-4.2mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"apache2-modules-2.0.45-4.2mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"apache2-source-2.0.45-4.2mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.1", cpu:"i386", reference:"libapr0-2.0.45-4.2mdk", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxapache2p-cpe:/a:mandriva:linux:apache2
mandrivalinuxapache2-commonp-cpe:/a:mandriva:linux:apache2-common
mandrivalinuxapache2-develp-cpe:/a:mandriva:linux:apache2-devel
mandrivalinuxapache2-manualp-cpe:/a:mandriva:linux:apache2-manual
mandrivalinuxapache2-mod_davp-cpe:/a:mandriva:linux:apache2-mod_dav
mandrivalinuxapache2-mod_ldapp-cpe:/a:mandriva:linux:apache2-mod_ldap
mandrivalinuxapache2-mod_sslp-cpe:/a:mandriva:linux:apache2-mod_ssl
mandrivalinuxapache2-modulesp-cpe:/a:mandriva:linux:apache2-modules
mandrivalinuxapache2-sourcep-cpe:/a:mandriva:linux:apache2-source
mandrivalinuxlibapr0p-cpe:/a:mandriva:linux:libapr0
Rows per page:
1-10 of 111

Related

cert 2
seebug 4
securityvulns 6
exploitpack 1
debiancve 3
packetstorm 2
cve 3
exploitdb 1
openvas 14
httpd 5
altlinux 3
ubuntucve 1
nessus 29
redhat 1
slackware 1
gentoo 1
suse 5
cert
cert
Apache vulnerable to DoS
2003-04-08 00:00:00
Cryptographic libraries and applications do not adequately defend against timing attacks
2003-03-25 00:00:00
seebug
seebug
jetty 6.x - 7.x xss information disclosure injection
2009-10-26 00:00:00
jetty 6.x - 7.x xss, information disclosure, injection
2014-07-01 00:00:00
jetty 6.x - 7.x xss information disclosure injection
2009-10-26 00:00:00
securityvulns
securityvulns
Jetty 6.x and 7.x Multiple Vulnerabilities
2009-10-26 00:00:00
iDEFENSE Security Advisory 04.08.03: Denial of Service in Apache HTTP Server 2.x
2003-04-09 00:00:00
[ANNOUNCE] Apache 2.0.45 Released
2003-04-05 00:00:00
exploitpack
exploitpack
jetty 6.x 7.x - Cross-Site Scripting Information Disclosure Injection
2009-10-26 00:00:00
debiancve
debiancve
CVE-2003-0083
2003-04-02 05:00:00
CVE-2003-0132
2003-04-11 04:00:00
CVE-2003-0020
2003-03-18 05:00:00
packetstorm
packetstorm
Jetty 6.x / 7.x Information Disclosure / XSS
2009-10-26 00:00:00
Nginx, Varnish, Cherokee, etc Log Injection
2010-01-11 00:00:00
cve
cve
CVE-2003-0083
2003-04-02 05:00:00
CVE-2003-0132
2003-04-11 04:00:00
CVE-2003-0020
2003-03-18 05:00:00
exploitdb
exploitdb
jetty 6.x < 7.x - Cross-Site Scripting / Information Disclosure / Injection
2009-10-26 00:00:00
openvas
openvas
HP-UX Update for Apache HPSBUX00256
2009-05-05 00:00:00
Apache HTTP Server Linefeed Memory Allocation Denial Of Service Vulnerability
2009-05-02 00:00:00
HP-UX Update for Apache HPSBUX00256
2009-05-05 00:00:00
httpd
httpd
Apache Httpd < 2.0.45 : Line feed memory leak DoS
2004-04-02 00:00:00
Apache Httpd < 2.0.46 : Filtered escape sequences
2003-02-24 00:00:00
Apache Httpd < 1.3.26 : Filtered escape sequences
2003-02-24 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.0.40-21
2003-02-24 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.0.40-21
2003-02-24 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.0.40-21
2003-02-24 00:00:00
ubuntucve
ubuntucve
CVE-2003-0020
2003-03-18 00:00:00
nessus
nessus
Apache 2.0.x < 2.0.45 Multiple Vulnerabilities (DoS, File Write)
2003-04-03 00:00:00
Apache < 1.3.31 / 2.0.49 Log Entry Terminal Escape Sequence Injection
2004-05-17 00:00:00
Fedora Core 1 : httpd-2.0.49-1.1 (2004-117)
2004-07-23 00:00:00
redhat
redhat
(RHSA-2003:244) apache security update
2003-09-22 00:00:00
slackware
slackware
apache
2004-05-12 16:54:58
gentoo
gentoo
Apache 1.3: Multiple vulnerabilities
2004-05-26 00:00:00
suse
suse
remote file creation in kdelibs/kdelibs3
2004-05-26 11:35:37
remote code execution in cvs
2004-04-14 15:54:44
local privilege escalation in mc
2004-05-14 14:09:57
JSON
Related for MANDRAKE_MDKSA-2003-050.NASL
cert2seebug4securityvulns6exploitpack1debiancve3packetstorm2cve3exploitdb1openvas14httpd5altlinux3ubuntucve1nessus29redhat1slackware1gentoo1suse5