CVE-2018-1303

MEDIUM

Description

A specially crafted HTTP request header could have crashed the Apache HTTP Server prior to version 2.4.30 due to an out of bound read while preparing data to be cached in shared memory. It could be used as a Denial of Service attack against users of mod_cache_socache. The vulnerability is considered as low risk since mod_cache_socache is not widely used, mod_cache_disk is not concerned by this vulnerability.

References

http://www.openwall.com/lists/oss-security/2018/03/24/3

http://www.securityfocus.com/bid/103522

http://www.securitytracker.com/id/1040572

https://access.redhat.com/errata/RHSA-2018:3558

https://access.redhat.com/errata/RHSA-2019:0366

https://access.redhat.com/errata/RHSA-2019:0367

https://httpd.apache.org/security/vulnerabilities_24.html

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://security.netapp.com/advisory/ntap-20180601-0004/

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03909en_us

https://usn.ubuntu.com/3627-1/

https://usn.ubuntu.com/3627-2/

https://www.debian.org/security/2018/dsa-4164

https://www.tenable.com/security/tns-2019-09

Details

Source: MITRE

Published: 2018-03-26

Updated: 2021-03-30

Type: CWE-125

Risk Information

CVSS v2.0

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Vulnerable Software

ID	Name	Product	Family	Severity
147353	NewStart CGSL CORE 5.04 / MAIN 5.04 : httpd Multiple Vulnerabilities (NS-SA-2021-0036)	Nessus	NewStart CGSL Local Security Checks	medium
141711	Scientific Linux Security Update : httpd on SL7.x x86_64 (20201001)	Nessus	Scientific Linux Local Security Checks	medium
141584	CentOS 7 : httpd (CESA-2020:3958)	Nessus	CentOS Local Security Checks	medium
141040	RHEL 7 : httpd (RHSA-2020:3958)	Nessus	Red Hat Local Security Checks	medium
124922	EulerOS Virtualization 3.0.1.0 : httpd (EulerOS-SA-2019-1419)	Nessus	Huawei Local Security Checks	high
122292	RHEL 6 / 7 : Red Hat JBoss Core Services Apache HTTP Server 2.4.29 (RHSA-2019:0367)	Nessus	Red Hat Local Security Checks	medium
122060	Apache 2.4.x < 2.4.33 Multiple Vulnerabilities	Nessus	Web Servers	medium
121934	Photon OS 2.0: Httpd PHSA-2018-2.0-0039	Nessus	PhotonOS Local Security Checks	high
121822	Photon OS 1.0: Httpd PHSA-2018-1.0-0126	Nessus	PhotonOS Local Security Checks	high
121275	EulerOS Virtualization 2.5.1 : httpd (EulerOS-SA-2019-1015)	Nessus	Huawei Local Security Checks	medium
98914	Apache 2.4.x < 2.4.33 Multiple Vulnerabilities	Web Application Scanning	Component Vulnerability	medium
120484	Fedora 28 : httpd (2018-6744ca470d)	Nessus	Fedora Local Security Checks	medium
118251	SUSE SLES12 Security Update : apache2 (SUSE-SU-2018:1161-2)	Nessus	SuSE Local Security Checks	medium
111930	Photon OS 1.0: Binutils / Httpd / Mercurial / Mysql / Net / Paramiko / Patch / Pycrypto / Python3 / Sqlite / Strongswan / Xerces PHSA-2018-1.0-0126 (deprecated)	Nessus	PhotonOS Local Security Checks	high
111298	Photon OS 2.0 : openjdk8 / httpd / librelp / zsh / libvirt (PhotonOS-PHSA-2018-2.0-0039) (deprecated)	Nessus	PhotonOS Local Security Checks	high
111297	Photon OS 2.0 : Zsh / Python3 / Xerces / Mercurial / Pmd / Pycrypto / Net / Python2 / Util / Mysql / Paramiko / Binutils / Patch / Sqlite (PhotonOS-PHSA-2018-2.0-0037) (deprecated)	Nessus	PhotonOS Local Security Checks	high
110877	EulerOS 2.0 SP3 : httpd (EulerOS-SA-2018-1213)	Nessus	Huawei Local Security Checks	medium
110876	EulerOS 2.0 SP2 : httpd (EulerOS-SA-2018-1212)	Nessus	Huawei Local Security Checks	medium
109745	Fedora 26 : httpd (2018-e6d9251471)	Nessus	Fedora Local Security Checks	medium
109664	openSUSE Security Update : apache2 (openSUSE-2018-438)	Nessus	SuSE Local Security Checks	medium
109598	SUSE SLES12 Security Update : apache2 (SUSE-SU-2018:1161-1)	Nessus	SuSE Local Security Checks	medium
109555	Amazon Linux AMI : httpd24 (ALAS-2018-1004)	Nessus	Amazon Linux Local Security Checks	medium
109466	Ubuntu 18.04 LTS : Apache HTTP Server vulnerabilities (USN-3627-2)	Nessus	Ubuntu Local Security Checks	medium
109199	Ubuntu 14.04 LTS / 16.04 LTS / 17.10 : Apache HTTP Server vulnerabilities (USN-3627-1)	Nessus	Ubuntu Local Security Checks	medium
108945	SUSE SLES12 Security Update : apache2 (SUSE-SU-2018:0901-1)	Nessus	SuSE Local Security Checks	medium
108876	SUSE SLES12 Security Update : apache2 (SUSE-SU-2018:0879-1)	Nessus	SuSE Local Security Checks	medium
108856	Fedora 27 : httpd (2018-375e3244b6)	Nessus	Fedora Local Security Checks	medium
108816	Debian DSA-4164-1 : apache2 - security update	Nessus	Debian Local Security Checks	medium
108758	Apache 2.4.x < 2.4.33 Multiple Vulnerabilities (deprecated)	Nessus	Web Servers	medium
108626	FreeBSD : apache -- multiple vulnerabilities (f38187e7-2f6e-11e8-8f07-b499baebfeaf)	Nessus	FreeBSD Local Security Checks	medium

CVE-2018-1303

MEDIUM

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Configuration 2

Configuration 3

Configuration 4

Tenable Plugins

medium

medium

medium

medium

high

medium

medium

high

high

medium

medium

medium

medium

high

high

high

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium