CVE-2016-2161

MEDIUM

Description

In Apache HTTP Server versions 2.4.0 to 2.4.23, malicious input to mod_auth_digest can cause the server to crash, and each instance continues to crash even for subsequently valid requests.

References

http://rhn.redhat.com/errata/RHSA-2017-1415.html

http://www.debian.org/security/2017/dsa-3796

http://www.securityfocus.com/bid/95076

http://www.securitytracker.com/id/1037508

https://access.redhat.com/errata/RHSA-2017:0906

https://access.redhat.com/errata/RHSA-2017:1161

https://access.redhat.com/errata/RHSA-2017:1413

https://access.redhat.com/errata/RHSA-2017:1414

https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03725en_us

https://httpd.apache.org/security/vulnerabilities_24.html#CVE-2016-2161

https://security.gentoo.org/glsa/201701-36

https://security.netapp.com/advisory/ntap-20180423-0001/

https://support.apple.com/HT208221

https://www.tenable.com/security/tns-2017-04

Details

Source: MITRE

Published: 2017-07-27

Updated: 2018-04-25

Type: CWE-20

Risk Information

CVSS v2.0

Base Score: 5

Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Vulnerable Software

Configuration 1

cpe:2.3:a:apache:http_server:2.4.0:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.1:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.2:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.3:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.6:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.7:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.8:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.9:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.10:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.12:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.14:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.16:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.19:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.20:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.21:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.22:*:*:*:*:*:*:*

cpe:2.3:a:apache:http_server:2.4.23:*:*:*:*:*:*:*

Tenable Plugins

View all (30 total)

ID	Name	Product	Family	Severity
700511	macOS < 10.13 Multiple Vulnerabilities	Nessus Network Monitor	Operating System Detection	critical
98910	Apache 2.4.x < 2.4.25 Multiple Vulnerabilities (httpoxy)	Web Application Scanning	Component Vulnerability	high
117316	RHEL 6 : JBoss Core Services (RHSA-2017:1414)	Nessus	Red Hat Local Security Checks	high
117315	RHEL 7 : JBoss Core Services (RHSA-2017:1413)	Nessus	Red Hat Local Security Checks	high
104379	macOS and Mac OS X Multiple Vulnerabilities (Security Update 2017-001 and 2017-004)	Nessus	MacOS X Local Security Checks	critical
103598	macOS < 10.13 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	critical
101445	Virtuozzo 7 : httpd / httpd-devel / httpd-manual / httpd-tools / etc (VZLSA-2017-0906)	Nessus	Virtuozzo Local Security Checks	medium
101044	Tenable SecurityCenter Apache 2.4.x < 2.4.25 Multiple Vulnerabilities (TNS-2017-04) (httpoxy)	Nessus	Misc.	high
100098	Ubuntu 14.04 LTS / 16.04 LTS / 16.10 : apache2 vulnerabilities (USN-3279-1)	Nessus	Ubuntu Local Security Checks	medium
99952	EulerOS 2.0 SP2 : httpd (EulerOS-SA-2017-1086)	Nessus	Huawei Local Security Checks	medium
99951	EulerOS 2.0 SP1 : httpd (EulerOS-SA-2017-1085)	Nessus	Huawei Local Security Checks	medium
99379	CentOS 7 : httpd (CESA-2017:0906)	Nessus	CentOS Local Security Checks	medium
99350	Scientific Linux Security Update : httpd on SL7.x x86_64	Nessus	Scientific Linux Local Security Checks	medium
99340	RHEL 7 : httpd (RHSA-2017:0906)	Nessus	Red Hat Local Security Checks	medium
99329	Oracle Linux 7 : httpd (ELSA-2017-0906)	Nessus	Oracle Linux Local Security Checks	medium
99155	openSUSE Security Update : apache2 (openSUSE-2017-417)	Nessus	SuSE Local Security Checks	medium
99154	openSUSE Security Update : apache2 (openSUSE-2017-416)	Nessus	SuSE Local Security Checks	medium
99134	macOS 10.12.x < 10.12.4 Multiple Vulnerabilities (httpoxy)	Nessus	MacOS X Local Security Checks	high
97916	SUSE SLES12 Security Update : apache2 (SUSE-SU-2017:0801-1)	Nessus	SuSE Local Security Checks	medium
97912	SUSE SLES12 Security Update : apache2 (SUSE-SU-2017:0797-1)	Nessus	SuSE Local Security Checks	medium
97831	SUSE SLES11 Security Update : apache2 (SUSE-SU-2017:0729-1)	Nessus	SuSE Local Security Checks	medium
97726	Tenable SecurityCenter 5.x < 5.4.3 Multiple Vulnerabilities (TNS-2017-04) (httpoxy)	Nessus	Misc.	medium
97400	Debian DSA-3796-1 : apache2 - security update	Nessus	Debian Local Security Checks	medium
96631	Amazon Linux AMI : httpd24 (ALAS-2017-785)	Nessus	Amazon Linux Local Security Checks	medium
96516	GLSA-201701-36 : Apache: Multiple vulnerabilities (httpoxy)	Nessus	Gentoo Local Security Checks	medium
96451	Apache 2.4.x < 2.4.25 Multiple Vulnerabilities (httpoxy)	Nessus	Web Servers	high
96114	Fedora 24 : httpd (2016-d22f50d985)	Nessus	Fedora Local Security Checks	medium
96111	Fedora 25 : httpd (2016-8d9b62c784)	Nessus	Fedora Local Security Checks	medium
96090	Slackware 14.0 / 14.1 / 14.2 / current : httpd (SSA:2016-358-01) (httpoxy)	Nessus	Slackware Local Security Checks	medium
96037	FreeBSD : Apache httpd -- several vulnerabilities (862d6ab3-c75e-11e6-9f98-20cf30e32f6d) (httpoxy)	Nessus	FreeBSD Local Security Checks	medium