Update Protection against A Format String Vulnerability in mod_auth_pgsql for Apache
| Check Point Reference: | CPAI-2006-014 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | iDEFENSE ADVISORY: 01.09.06 | |
| Industry Reference(s): | CVE-2005-3656 | |
| Protection Provided by: |
VPN-1
|
|
| Who is Vulnerable? version 2.0.2b1 of mod_auth_pgsql for Apache 2.x | ||
| Vulnerability Description A vulnerability exists in multiple versions of an authentication module (mod_auth_pgsql) for Apache httpd. To exploit this vulnerability, a user can supply specially crafted information to trigger a flaw in certain logging functions of the module. Successful exploitation could result in the execution of arbitrary code on the target system. This module is not installed by default, but is available as a package from some vendors, including Red Hat Linux, Debian GNU/Linux and FreeBSD. Only systems that have the mod_auth_pgsql module installed and are configured to authenticate against a PostgreSQL database using this module are affected. |
||
|
Vulnerability Details The mod_auth_pgsql module for the Apache httpd is a third party authentication module which allows authentication details to be stored in a PostgreSQL database. To exploit the vulnerability, the attacker must know the URI of at least one resource on the Web server which authenticates using this module. |
Protection Overview
The update blocks the vulnerability based on a unique HTTP header pattern.
To configure the defense, select your product from the list below and follow the related protection steps.
Additional Information
The update also includes the following protections:
- Microsoft Windows Embedded Opentype Fonts (EOT) (CPAI-2006-010)
- PHP ADOdb Test Scripts and PHP shell/web defacement tool (CPAI-2006-011)
- HP OpenView Remote Command Execution (CPAI-2006-012)
- Oracle XDB HTTP Buffer Overflow (CPAI-2006-013)
- Apache Format string Vulnerability (CPAI-2006-014)