Detections
Analytics
Debian DSA-2637-1 : apache2 - several issues
medium Nessus Plugin ID 64995
Language:
Synopsis
The remote Debian host is missing a security-related update.Description
Several vulnerabilities have been found in the Apache HTTPD server.- CVE-2012-3499 The modules mod_info, mod_status, mod_imagemap, mod_ldap, and mod_proxy_ftp did not properly escape hostnames and URIs in HTML output, causing cross site scripting vulnerabilities.
- CVE-2012-4558 Mod_proxy_balancer did not properly escape hostnames and URIs in its balancer-manager interface, causing a cross site scripting vulnerability.
- CVE-2013-1048 Hayawardh Vijayakumar noticed that the apache2ctl script created the lock directory in an unsafe manner, allowing a local attacker to gain elevated privileges via a symlink attack. This is a Debian specific issue.
Solution
Upgrade the apache2 packages.For the stable distribution (squeeze), these problems have been fixed in version 2.2.16-6+squeeze11.
See Also
https://security-tracker.debian.org/tracker/CVE-2012-3499
https://security-tracker.debian.org/tracker/CVE-2012-4558
https://security-tracker.debian.org/tracker/CVE-2013-1048
Plugin Details
Severity: Medium
ID: 64995
File Name: debian_DSA-2637.nasl
Version: 1.18
Type: local
Agent: unix
Family: Debian Local Security Checks
Published: 3/5/2013
Updated: 1/11/2021
Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 4.6
Temporal Score: 3.4
Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: p-cpe:/a:debian:debian_linux:apache2, cpe:/o:debian:debian_linux:6.0
Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l
Exploit Ease: No known exploits are available
Patch Publication Date: 3/4/2013
Reference Information
CVE: CVE-2012-3499, CVE-2012-4558, CVE-2013-1048
BID: 58165
DSA: 2637