Lucene search
+L

Apache Traffic Server (ATS) sslheader Plugin Vulnerability

🗓️ 14 Feb 2019 00:00:00Reported by Copyright (C) 2019 Greenbone AGType 
openvas
 openvas
🔗 plugins.openvas.org👁 79 Views

Apache Traffic Server (ATS) sslheader Plugin Vulnerability. Extracts information from client certificate and sets headers in the request based on the plugin configuration. Doesn't strip headers from the request in some scenarios

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2018-11783
7 Mar 201920:21
circl
CNVD
Apache Traffic Server sslheader plugin information disclosure vulnerability
25 Jul 201900:00
cnvd
CVE
CVE-2018-11783
7 Mar 201918:00
cve
Cvelist
CVE-2018-11783
7 Mar 201918:00
cvelist
Debian CVE
CVE-2018-11783
7 Mar 201918:00
debiancve
EUVD
EUVD-2018-3786
7 Oct 202500:30
euvd
NVD
CVE-2018-11783
7 Mar 201918:29
nvd
OSV
DEBIAN-CVE-2018-11783
7 Mar 201918:29
osv
OSV
UBUNTU-CVE-2018-11783
7 Mar 201918:29
osv
Prion
Cross site request forgery (csrf)
7 Mar 201918:29
prion
Rows per page
# SPDX-FileCopyrightText: 2019 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:apache:traffic_server";

if (description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.141998");
  script_version("2023-08-11T05:05:41+0000");
  script_tag(name:"last_modification", value:"2023-08-11 05:05:41 +0000 (Fri, 11 Aug 2023)");
  script_tag(name:"creation_date", value:"2019-02-14 13:58:24 +0700 (Thu, 14 Feb 2019)");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_tag(name:"severity_vector", value:"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2019-03-18 18:31:00 +0000 (Mon, 18 Mar 2019)");

  script_cve_id("CVE-2018-11783");

  script_tag(name:"qod_type", value:"remote_banner");

  script_tag(name:"solution_type", value:"VendorFix");

  script_name("Apache Traffic Server (ATS) sslheader Plugin Vulnerability");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2019 Greenbone AG");
  script_family("Web Servers");
  script_dependencies("gb_apache_traffic_server_http_detect.nasl");
  script_mandatory_keys("apache/ats/detected");

  script_tag(name:"summary", value:"sslheaders plugin extracts information from the client certificate and sets
headers in the request based on the configuration of the plugin.  The plugin doesn't strip the headers from the
request in some scenarios.");

  script_tag(name:"affected", value:"Apache Traffic Server versions 6.x, 7.x and 8.x.");

  script_tag(name:"solution", value:"Update to version 7.1.6, 8.0.2 or later.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_xref(name:"URL", value:"https://seclists.org/oss-sec/2019/q1/132");

  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if (!port = get_app_port(cpe: CPE))
  exit(0);

if (!version = get_app_version(cpe: CPE, port: port))
  exit(0);

if (version_in_range(version: version, test_version: "6.0.0", test_version2: "7.1.5")) {
  report = report_fixed_ver(installed_version: version, fixed_version: "7.1.6");
  security_message(port: port, data: report);
  exit(0);
}

if (version_in_range(version: version, test_version: "8.0.0", test_version2: "8.0.1")) {
  report = report_fixed_ver(installed_version: version, fixed_version: "8.0.2");
  security_message(port: port, data: report);
  exit(0);
}

exit(99);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation