CVE-2013-2175

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

HAProxy 1.4 before 1.4.24 and 1.5 before 1.5-dev19, when configured to use hdr_ip or other "hdr_*" functions with a negative occurrence count, allows remote attackers to cause a denial of service (negative array index usage and crash) via an HTTP header with a certain number of values, related to the MAX_HDR_HISTORY variable.

References

http://marc.info/?l=haproxy&m=137147915029705&w=2

http://rhn.redhat.com/errata/RHSA-2013-1120.html

http://rhn.redhat.com/errata/RHSA-2013-1204.html

http://secunia.com/advisories/54344

http://www.debian.org/security/2013/dsa-2711

http://www.ubuntu.com/usn/USN-1889-1

https://bugzilla.redhat.com/show_bug.cgi?id=974259

Details

Source: MITRE

Published: 2013-08-19

Updated: 2016-12-07

Type: CWE-20

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:*

Configuration 3

OR

cpe:2.3:a:redhat:enterprise_linux_load_balancer:6.0:*:*:*:*:*:*:*

cpe:2.3:a:redhat:enterprise_linux_load_balancer:6.4:*:*:*:*:*:*:*

Configuration 4

OR

cpe:2.3:a:haproxy:haproxy:1.4:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.0:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.1:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.2:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.3:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.4:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.5:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.6:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.7:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.8:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.9:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.10:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.11:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.12:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.13:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.14:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.15:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.16:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.17:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.18:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.19:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.20:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.21:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.22:*:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.4.23:*:*:*:*:*:*:*

Configuration 5

OR

cpe:2.3:a:haproxy:haproxy:1.5:dev:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev0:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev1:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev10:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev11:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev12:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev13:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev14:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev15:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev16:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev17:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev18:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev2:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev3:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev4:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev5:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev6:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev7:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev8:*:*:*:*:*:*

cpe:2.3:a:haproxy:haproxy:1.5:dev9:*:*:*:*:*:*

Tenable Plugins

View all (12 total)

IDNameProductFamilySeverity
119344RHEL 6 : haproxy (RHSA-2013:1204)NessusRed Hat Local Security Checks
medium
70219Amazon Linux AMI : haproxy (ALAS-2013-215)NessusAmazon Linux Local Security Checks
medium
69166Scientific Linux Security Update : haproxy on SL6.x i386/x86_64 (20130730)NessusScientific Linux Local Security Checks
medium
69161RHEL 6 : haproxy (RHSA-2013:1120)NessusRed Hat Local Security Checks
medium
69143CentOS 6 : haproxy (CESA-2013:1120)NessusCentOS Local Security Checks
medium
67301Fedora 17 : haproxy-1.4.24-1.fc17 (2013-11234)NessusFedora Local Security Checks
medium
67300Fedora 18 : haproxy-1.4.24-1.fc18 (2013-11212)NessusFedora Local Security Checks
medium
67297Fedora 19 : haproxy-1.4.24-1.fc19 (2013-11135)NessusFedora Local Security Checks
medium
67252GLSA-201307-01 : HAProxy: Multiple vulnerabilitiesNessusGentoo Local Security Checks
medium
6909HAProxy Multiple Denial of Service VulnerabilitiesNessus Network MonitorWeb Servers
medium
66962Ubuntu 12.04 LTS / 12.10 / 13.04 : haproxy vulnerability (USN-1889-1)NessusUbuntu Local Security Checks
medium
66936Debian DSA-2711-1 : haproxy - several vulnerabilitiesNessusDebian Local Security Checks
medium