Launchpad.net

CVE 2011-3368

The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character.

Related bugs and status

CVE-2011-3368 (Candidate) is related to these bugs:

Bug #871674: Server mod_proxy_ajp Denial of Service Vulnerability

Summary				In	Importance	Status
	871674	Server mod_proxy_ajp Denial of Service Vulnerability		apache2 (Ubuntu)	Undecided	Fix Released

Bug #872000: /etc/apache2/mods-available/suexec.load has group read

Summary				In	Importance	Status
	872000	/etc/apache2/mods-available/suexec.load has group read		apache2 (Ubuntu)	Medium	Fix Released

Bug #877740: CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure

		In	Importance	Status
877740	CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure	apache2 (Ubuntu)	Undecided	Fix Released
877740	CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure	apache2 (Ubuntu Hardy)	Undecided	Fix Released
877740	CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure	apache2 (Ubuntu Lucid)	Undecided	Fix Released
877740	CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure	apache2 (Ubuntu Natty)	Undecided	Fix Released
877740	CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure	apache2 (Ubuntu Maverick)	Undecided	Fix Released
877740	CVE-2011-3368 Apache2 mod_proxy reverse proxy exposure	apache2 (Ubuntu Oneiric)	Undecided	Fix Released

Bug #897120: apache2-suexec-custom changes permissions on suexec binary

Summary				In	Importance	Status
	897120	apache2-suexec-custom changes permissions on suexec binary		apache2 (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-3368

Related bugs and status

Related bugs

References