Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2007-235.NASL
HistoryDec 04, 2007 - 12:00 a.m.

Mandrake Linux Security Advisory : apache (MDKSA-2007:235)

2007-12-0400:00:00
This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.
www.tenable.com
11
JSON

A flaw in the Apache mod_proxy module was found that could potentially lead to a denial of service is using a threaded Multi-Processing Module. On sites where a reverse proxy is configured, a remote attacker could send a special reequest that would cause the Apache child process handling the request to crash. Likewise, a similar crash could occur on sites with a forward proxy configured if a user could be persuaded to visit a malicious site using the proxy (CVE-2007-3847).

A flaw in the Apache mod_autoindex module was found. On sites where directory listings are used and the AddDefaultCharset directive was removed from the configuration, a cross-site-scripting attack could be possible against browsers that to not correctly derive the response character set according to the rules in RGC 2616 (CVE-2007-4465).

The updated packages have been patched to correct this issue.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2007:235. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(29202);
  script_version("1.21");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2007-3847", "CVE-2007-4465");
  script_xref(name:"MDKSA", value:"2007:235");

  script_name(english:"Mandrake Linux Security Advisory : apache (MDKSA-2007:235)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A flaw in the Apache mod_proxy module was found that could potentially
lead to a denial of service is using a threaded Multi-Processing
Module. On sites where a reverse proxy is configured, a remote
attacker could send a special reequest that would cause the Apache
child process handling the request to crash. Likewise, a similar crash
could occur on sites with a forward proxy configured if a user could
be persuaded to visit a malicious site using the proxy
(CVE-2007-3847).

A flaw in the Apache mod_autoindex module was found. On sites where
directory listings are used and the AddDefaultCharset directive was
removed from the configuration, a cross-site-scripting attack could be
possible against browsers that to not correctly derive the response
character set according to the rules in RGC 2616 (CVE-2007-4465).

The updated packages have been patched to correct this issue."
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_cwe_id(79);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-base");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-htcacheclean");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_authn_dbd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_cache");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_dav");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_dbd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_deflate");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_disk_cache");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_file_cache");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_mem_cache");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_proxy");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_proxy_ajp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_ssl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mod_userdir");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-modules");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mpm-event");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mpm-itk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mpm-prefork");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-mpm-worker");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:apache-source");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2007");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2007.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/12/03");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/12/04");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK2007.0", reference:"apache-base-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-devel-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-htcacheclean-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_authn_dbd-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_cache-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_dav-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_dbd-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_deflate-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_disk_cache-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_file_cache-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_ldap-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_mem_cache-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_proxy-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_proxy_ajp-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_ssl-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mod_userdir-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-modules-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mpm-prefork-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-mpm-worker-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.0", reference:"apache-source-2.2.3-1.2mdv2007.0", yank:"mdv")) flag++;

if (rpm_check(release:"MDK2007.1", reference:"apache-base-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-devel-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-htcacheclean-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_authn_dbd-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_cache-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_dav-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_dbd-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_deflate-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_disk_cache-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_file_cache-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_ldap-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_mem_cache-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_proxy-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_proxy_ajp-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_ssl-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mod_userdir-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-modules-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mpm-event-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mpm-itk-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mpm-prefork-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-mpm-worker-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2007.1", reference:"apache-source-2.2.4-6.3mdv2007.1", yank:"mdv")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxapache-basep-cpe:/a:mandriva:linux:apache-base
mandrivalinuxapache-develp-cpe:/a:mandriva:linux:apache-devel
mandrivalinuxapache-htcachecleanp-cpe:/a:mandriva:linux:apache-htcacheclean
mandrivalinuxapache-mod_authn_dbdp-cpe:/a:mandriva:linux:apache-mod_authn_dbd
mandrivalinuxapache-mod_cachep-cpe:/a:mandriva:linux:apache-mod_cache
mandrivalinuxapache-mod_davp-cpe:/a:mandriva:linux:apache-mod_dav
mandrivalinuxapache-mod_dbdp-cpe:/a:mandriva:linux:apache-mod_dbd
mandrivalinuxapache-mod_deflatep-cpe:/a:mandriva:linux:apache-mod_deflate
mandrivalinuxapache-mod_disk_cachep-cpe:/a:mandriva:linux:apache-mod_disk_cache
mandrivalinuxapache-mod_file_cachep-cpe:/a:mandriva:linux:apache-mod_file_cache
Rows per page:
1-10 of 241

Related

openvas 51
fedora 2
redhat 9
nessus 34
oraclelinux 5
suse 1
centos 5
securityvulns 6
veracode 2
debiancve 2
prion 2
altlinux 6
ubuntucve 2
cve 2
httpd 2
gentoo 1
ubuntu 1
slackware 1
freebsd 1
vmware 2
oracle 1
openvas
openvas
Fedora Update for httpd FEDORA-2007-707
2009-02-27 00:00:00
Mandriva Update for apache MDKSA-2007:235 (apache)
2009-04-09 00:00:00
Mandriva Update for apache MDKSA-2007:235 (apache)
2009-04-09 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: httpd-2.2.6-1.fc6
2007-09-24 20:29:48
[SECURITY] Fedora 7 Update: httpd-2.2.6-1.fc7
2007-09-19 02:53:28
redhat
redhat
(RHSA-2007:0911) Moderate: httpd security update
2007-10-25 00:00:00
(RHSA-2008:0005) Moderate: httpd security update
2008-01-15 00:00:00
(RHSA-2007:0746) Moderate: httpd security, bug fix, and enhancement update
2007-11-07 00:00:00
nessus
nessus
Fedora Core 6 : httpd-2.2.6-1.fc6 (2007-707)
2007-09-25 00:00:00
SuSE 10 Security Update : apache2 (ZYPP Patch Number 4669)
2007-12-13 00:00:00
Oracle Linux 3 : httpd (ELSA-2008-0005)
2013-07-12 00:00:00
oraclelinux
oraclelinux
Moderate: httpd security update
2008-01-15 00:00:00
Moderate: httpd security update
2008-01-15 00:00:00
httpd security, bug fix, and enhancement update
2007-11-27 00:00:00
suse
suse
remote denial of service in apache2
2007-11-19 15:20:20
centos
centos
httpd, mod_ssl security update
2008-01-15 12:48:29
httpd, mod_ssl security update
2007-11-25 11:09:37
apache security update
2008-01-16 02:42:35
securityvulns
securityvulns
Apache crossite scripting
2007-09-13 00:00:00
Apache2 Undefined Charset UTF-7 XSS Vulnerability
2007-09-13 00:00:00
Apache mod_proxy denial of service
2007-09-14 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-10 00:18:54
Denial Of Service (DoS)
2020-04-10 00:15:51
debiancve
debiancve
CVE-2007-4465
2007-09-14 00:17:00
CVE-2007-3847
2007-08-23 22:17:00
prion
prion
Cross site scripting
2007-09-14 00:17:00
Buffer overflow
2007-08-23 22:17:00
altlinux
altlinux
Security fix for the ALT Linux 8 package apache2 version 2.2.6-alt1
2007-09-14 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.6-alt1
2007-09-14 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.6-alt1
2007-09-14 00:00:00
ubuntucve
ubuntucve
CVE-2007-4465
2007-09-14 00:00:00
CVE-2007-3847
2007-08-23 00:00:00
cve
cve
CVE-2007-4465
2007-09-14 00:17:00
CVE-2007-3847
2007-08-23 22:17:00
httpd
httpd
Apache Httpd < 2.2.6 : mod_proxy crash
2006-12-10 00:00:00
Apache Httpd < 2.0.61 : mod_proxy crash
2006-12-10 00:00:00
gentoo
gentoo
Apache: Multiple vulnerabilities
2007-11-07 00:00:00
ubuntu
ubuntu
Apache vulnerabilities
2008-02-04 00:00:00
slackware
slackware
[slackware-security] apache
2008-02-15 01:23:13
freebsd
freebsd
apache -- multiple vulnerabilities
2007-09-07 00:00:00
vmware
vmware
VMware Hosted products update libpng and Apache HTTP Server
2009-08-20 00:00:00
VMware Hosted products update libpng and Apache HTTP Server
2009-08-20 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2013
2013-07-16 00:00:00
JSON
Related for MANDRAKE_MDKSA-2007-235.NASL
openvas51fedora2redhat9nessus34oraclelinux5suse1centos5securityvulns6veracode2debiancve2prion2altlinux6ubuntucve2cve2httpd2gentoo1ubuntu1slackware1freebsd1vmware2oracle1