CVE-2008-0456low
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
CRLF injection vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks by uploading a file with a multi-line name containing HTTP header sequences and a file extension, which leads to injection within a (1) "406 Not Acceptable" or (2) "300 Multiple Choices" HTTP response when the extension is omitted in a request for the file.
References
http://www.mindedsecurity.com/MSA01150108.html
http://www.securityfocus.com/bid/27409
http://securitytracker.com/id?1019256
http://security.gentoo.org/glsa/glsa-200803-19.xml
http://secunia.com/advisories/29348
http://securityreason.com/securityalert/3575
http://www.vupen.com/english/advisories/2009/1297
http://secunia.com/advisories/35074
http://lists.apple.com/archives/security-announce/2009/May/msg00002.html
http://support.apple.com/kb/HT3549
http://www.us-cert.gov/cas/techalerts/TA09-133A.html
http://rhn.redhat.com/errata/RHSA-2013-0130.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/39893
http://www.securityfocus.com/archive/1/486847/100/0/threaded
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions from 2.0.0 to 2.0.61 (inclusive)
cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions from 2.2.0 to 2.2.6 (inclusive)
cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:* versions from 1.3.0 to 1.3.39 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 85697 | F5 Networks BIG-IP : Apache HTTP server vulnerability (SOL17189) | Nessus | F5 Networks Local Security Checks | low |
| 84878 | Juniper NSM < 2012.2R9 Apache HTTP Server Multiple Vulnerabilities (JSA10685) (credentialed check) | Nessus | Misc. | medium |
| 84877 | Juniper NSM < 2012.2R9 Apache HTTP Server Multiple Vulnerabilities (JSA10685) | Nessus | Misc. | medium |
| 68701 | Oracle Linux 5 : httpd (ELSA-2013-0130) | Nessus | Oracle Linux Local Security Checks | medium |
| 63597 | Scientific Linux Security Update : httpd on SL5.x i386/x86_64 (20130108) | Nessus | Scientific Linux Local Security Checks | medium |
| 63575 | CentOS 5 : httpd (CESA-2013:0130) | Nessus | CentOS Local Security Checks | medium |
| 63411 | RHEL 5 : httpd (RHSA-2013:0130) | Nessus | Red Hat Local Security Checks | medium |
| 17692 | Apache mod_negotiation Multi-Line Filename Upload Vulnerabilities | Nessus | Web Servers | medium |
| 38744 | Mac OS X 10.5.x < 10.5.7 Multiple Vulnerabilities | Nessus | MacOS X Local Security Checks | critical |
| 31445 | GLSA-200803-19 : Apache: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | medium |
| 5023 | Mac OS X 10.5 < 10.5.7 Multiple Vulnerabilities | Nessus Network Monitor | Generic | critical |
| 800792 | Mac OS X 10.5 < 10.5.7 Multiple Vulnerabilities | Log Correlation Engine | Operating System Detection | high |