SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com





Category:   Application (Web Server/CGI)  >   Apache Vendors:   Apache Software Foundation
(Apple Issues Fix for OS X) Apache Web Server Socket Starvation Flaw May Let Remote Users Deny Service
SecurityTracker Alert ID:  1012410
SecurityTracker URL:  http://securitytracker.com/id/1012410
CVE Reference:   CAN-2004-0174   (Links to External Site)
Date:  Dec 2 2004
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 2.0.48 and prior versions; 1.3.29 and prior versions
Description:   A vulnerability was reported in the Apache web server. A remote user may be able to cause denial of service conditions.

It is reported that a remote user can establish a short-lived connection to a rarely-accessed listening socket on the target server. This may cause the Apache child process to block new connections until another connection arrives on the rarely-accessed listening socket.

The report indicates that some versions of AIX, Solaris, and Tru64 UNIX are affected, but that FreeBSD and Linux systems are not affected.
Impact:   A remote user may be able to cause the target server to deny connection requests.
Solution:   Apple has issued a fix as part of Security Update 2004-12-02, available at:

- Software Update preferences

- Apple Downloads:

http://www.apple.com/swupdates/
Vendor URL:  httpd.apache.org/ (Links to External Site)
Cause:   Resource error
Underlying OS:   UNIX (OS X)

Message History:   This archive entry is a follow-up to the message listed below.
Mar 19 2004 Apache Web Server Socket Starvation Flaw May Let Remote Users Deny Service


 Source Message Contents
Date:  Thu, 2 Dec 2004 16:38:30 -0500
Subject:  [none]


Security Update 2004-12-02

Apache
Available for: Mac OS X Server v10.3.6, Mac OS X Server v10.2.8
CVE-ID: CAN-2004-1082 
Impact: Apache mod_digest_apple authentication is vulnerable to replay attacks.
Description: The Mac OS X Server specific mod_digest_apple is based on Apache's 
mod_digest. Multiple corrections for a replay problem in mod_digest were made in 
versions 1.3.31 and 1.3.32 of Apache (CAN-2003-0987). This update corrects the replay 
problem in mod_digest_apple authentication using the modifications made to Apache 
1.3.32.


Apache
Available for: Mac OS X v10.3.6, Mac OS X Server v10.3.6, Mac OS X v10.2.8, Mac OS X 
Server v10.2.8
CVE-ID: CAN-2003-0020, CAN-2003-0987, CAN-2004-0174, CAN-2004-0488, CAN-2004-0492, CAN-2004-0885, CAN-2004-0940
Impact: Multiple vulnerabilities in Apache and mod_ssl including local privilege 
escalation, remote denial of service and in some modified configurations execution of 
arbitrary code.
Description: The Apache Group fixed a number of vulnerabilities between versions 1.3.29 
and 1.3.33. The Apache Group security page for Apache 1.3 is located at 
http://www.apacheweek.com/features/security-13. The previously installed version of 
Apache was 1.3.29. The default installation of Apache does not enable mod_ssl. This 
update fixes all of applicable issues by updating Apache to version 1.3.33 and the 
companion mod_ssl to version 2.8.22.


Apache
Available for: Mac OS X v10.3.6, Mac OS X Server v10.3.6, Mac OS X v10.2.8, Mac OS X 
Server v10.2.8
CVE-ID: CAN-2004-1083
Impact: Apache configurations did not fully block access to ".DS_Store" files or those 
starting with ".ht".
Description: A default Apache configuration blocks access to files starting with ".ht" 
in a case sensitive way. The Apple HFS+ filesystem performs file access in a case 
insensitive way. The Finder may also create .DS_Store files containing the names of 
files in locations used to serve web pages. This update modifies the Apache 
configuration to restricts access to all files beginning with ".ht" or ".DS_S" 
regardless of capitalization. More...


Apache
Available for: Mac OS X v10.3.6, Mac OS X Server v10.3.6, Mac OS X v10.2.8, Mac OS X 
Server v10.2.8
CVE-ID: CAN-2004-1084
Impact: File data and resource fork content can be retrieved via HTTP bypassing normal 
Apache file handlers.
Description: The Apple HFS+ filesystem permits files to have multiple data streams. 
These data streams can be directly accessed using special filenames. A specially 
crafted HTTP request can bypass an Apache file handler and directly access file data or 
resource fork content. This update modifies the Apache configuration to deny requests 
for file data or resource fork content via their special filenames. For more 
information, see this document. Credit to NetSec for reporting this issue.


Apache 2
Available for: Mac OS X Server v10.3.6, Mac OS X Server v10.2.8
CVE-ID: CAN-2004-0747, CAN-2004-0786, CAN-2004-0751, CAN-2004-0748
Impact: Modified Apache 2 configurations could permit a privilege escalation for local 
users and remote denial of service.
Description: A customer-modified Apache 2 configuration, where AllowOverride has been 
enabled, could permit a local user to execute arbitrary code as the Apache (www) user. 
An unmodified configuration is not vulnerable to this problem. This update also 
addresses bugs in Apache that could allow certain types of requests to crash the 
server. Apache is updated to version 2.0.52. Apache 2 ships only with Mac OS X Server, 
and is off by default.


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

Copyright 2012, SecurityGlobal.net LLC