製品・ソフトウェアに関する情報

JVN脆弱性詳細

Apache HTTP Server の mod_proxy におけるサービス運用妨害 (DoS) の脆弱性

Title	Apache HTTP Server の mod_proxy におけるサービス運用妨害 (DoS) の脆弱性
Summary	Apache HTTP Server の mod_proxy モジュールにある stream_reqbody_cl 関数には、リバースプロキシが設定されている場合に、Content-Length 値を超えるストリームデータ量を適切に処理しないため、サービス運用妨害 (DoS) 状態となる脆弱性が存在します。
Possible impacts	第三者による巧妙に細工されたリクエストにより、サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	July 5, 2009, midnight
Registration Date	Aug. 14, 2009, 11:04 a.m.
Last Update	April 19, 2013, 3:08 p.m.

CVSS2.0 : 警告
Score	5
Vector	AV:N/AC:L/Au:N/C:N/I:N/A:P

Affected System

レッドハット

Red Hat Application Stack v2

Red Hat Enterprise Linux 5 (server)

Red Hat Enterprise Linux Desktop 5.0 (client)

Red Hat Enterprise Linux EUS 5.3.z (server)

RHEL Desktop Workstation 5 (client)

ヒューレット・パッカード

HP-UX 11.11

HP-UX 11.23

HP-UX 11.31

HP-UX Apache-based Web Server v.2.2.15.03 未満

Apache Software Foundation

Apache HTTP Server 2.3.3 未満

オラクル

OpenSolaris

Oracle HTTP Server

IBM

IBM HTTP Server 7.0

IBM WebSphere Application Server 7.0

ターボリナックス

Turbolinux Appliance Server 3.0

Turbolinux Appliance Server 3.0 (x64)

Turbolinux Client 2008

Turbolinux Server 11

Turbolinux Server 11 (x64)

サイバートラスト株式会社

Asianux Server 3 (x86)

Asianux Server 3 (x86-64)

アップル

Apple Mac OS X v10.5.8

Apple Mac OS X v10.6

Apple Mac OS X v10.6.1

Apple Mac OS X Server v10.5.8

Apple Mac OS X Server v10.6

Apple Mac OS X Server v10.6.1

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2009-1890	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1890
National Vulnerability Database (NVD)
2	CVE-2009-1890	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1890

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-189	https://jvndb.jvn.jp/ja/cwe/CWE-189.html

ベンダー情報

No	Name	URL
Apache httpd 2.2 vulnerabilities
1	Fixed in Apache httpd 2.2.12	http://httpd.apache.org/security/vulnerabilities_22.html#2.2.12
Apple Security Updates
2	HT3937	http://support.apple.com/kb/HT3937
Apple セキュリティアップデート
3	HT3937	http://support.apple.com/kb/HT3937?viewlocale=ja_JP
Asianux Technical Support Network
4	httpd-2.2.3-22.2.1AXS3	https://tsn.miraclelinux.com/tsn_local/index.php?m=errata&a=detail&eid=453
Hewlett Packard
5	HPUXWSATW313	https://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=HPUXWSATW313
HP Security Bulletin
6	HPSBUX02612	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c02579879
IBM Support Document
7	4023947	http://www-01.ibm.com/support/docview.wss?uid=swg24023947
8	7014463	http://www-01.ibm.com/support/docview.wss?uid=swg27014463#7007
9	7014506	http://www-01.ibm.com/support/docview.wss?uid=swg27014506#7007
IBM サポート & ダウンロード
10	PK91259	http://www-01.ibm.com/support/docview.wss?uid=swg1PK91259&loc=en_US
Oracle Critical Patch Update
11	Oracle Critical Patch Update Advisory - April 2013	http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html
12	Text Form of Oracle Critical Patch Update - April 2013 Risk Matrices	http://www.oracle.com/technetwork/topics/security/cpuapril2013verbose-1899563.html
Red Hat Security Advisory
13	RHSA-2009:1148	http://rhn.redhat.com/errata/RHSA-2009-1148.html
14	RHSA-2009:1156	http://rhn.redhat.com/errata/RHSA-2009-1156.html
SECURITY BLOG
15	April 2013 Critical Patch Update Released	https://blogs.oracle.com/security/entry/april_2013_critical_patch_update
16	multiple_vulnerabilities_in_the_apache	http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_the_apache
Turbolinux Security Advisory
17	TLSA-2009-21	http://www.turbolinux.co.jp/security/2009/TLSA-2009-21j.txt
レッドハットセキュリティーアップデート
18	RHSA-2009:1148	https://www.jp.redhat.com/support/errata/RHSA/RHSA-2009-1148J.html

その他

No	Name	URL
OPEN SOURCE VULNERABILITY DATABASE (OSVDB)
1	55553	http://osvdb.org/55553
Secunia Advisory
2	SA35691	http://secunia.com/advisories/35691
3	SA35793	http://secunia.com/advisories/35793
SecurityFocus
4	35565	http://www.securityfocus.com/bid/35565
SecurityTracker
5	1022509	http://www.securitytracker.com/id?1022509
VUPEN Security
6	VUPEN/ADV-2009-1773	http://www.vupen.com/english/advisories/2009/1773

Change Log

No	Changed Details	Date of change
0	[2009年08月14日] 掲載 [2009年09月30日] 影響を受けるシステム：IBM (4023947) の情報を追加ベンダ情報：IBM (4023947) を追加 [2009年11月11日] 影響を受けるシステム：アップル (HT3937) の情報を追加ベンダ情報：IBM (PK91259) を追加ベンダ情報：アップル (HT3937) を追加 [2009年12月25日] 影響を受けるシステム：IBM (7014463) の情報を追加ベンダ情報：IBM (7014463) を追加ベンダ情報：IBM (7014506) を追加 [2010年10月28日] 影響を受けるシステム：オラクル (multiple_vulnerabilities_in_the_apache) の情報を追加ベンダ情報：オラクル (multiple_vulnerabilities_in_the_apache) を追加 [2010年12月15日] 影響を受けるシステム：ヒューレット・パッカード (HPUXWSATW313) の情報を追加影響を受けるシステム：ヒューレット・パッカード (HPSBUX02612) の情報を追加ベンダ情報：ヒューレット・パッカード (HPUXWSATW313) を追加ベンダ情報：ヒューレット・パッカード (HPSBUX02612) を追加 [2013年04月19日] 影響を受けるシステム：オラクル (Oracle Critical Patch Update Advisory - April 2013) の情報を追加ベンダ情報：オラクル (Oracle Critical Patch Update Advisory - April 2013) を追加ベンダ情報：オラクル (Text Form of Oracle Critical Patch Update - April 2013 Risk Matrices) を追加ベンダ情報：オラクル (April 2013 Critical Patch Update Released) を追加	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2009-1890

Summary	The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which allows remote attackers to cause a denial of service (CPU consumption) via crafted requests.
Publication Date	July 6, 2009, 1:30 a.m.
Registration Date	Jan. 29, 2021, 1:18 p.m.
Last Update	Feb. 13, 2023, 11:20 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:apache:http_server::::::::		2.2.0			2.2.12

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:fedoraproject:fedora:11:::::::*

Configuration3	or higher	or less	more than	less than
cpe:2.3:o:debian:debian_linux:5.0:::::::*
cpe:2.3:o:debian:debian_linux:4.0:::::::*
cpe:2.3:o:debian:debian_linux:6.0:::::::*

Configuration4	or higher	or less	more than	less than
cpe:2.3:o:canonical:ubuntu_linux:9.04:::::::*
cpe:2.3:o:canonical:ubuntu_linux:8.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:8.04::::-:::
cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*

Configuration5	or higher	or less	more than	less than
cpe:2.3:o:redhat:enterprise_linux_server:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server_aus:5.3:::::::*
cpe:2.3:o:redhat:enterprise_linux_eus:5.3:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://svn.apache.org/viewvc/httpd/httpd/trunk/CHANGES?revision=790587	CONFIRM	Vendor Advisory
2	http://svn.apache.org/viewvc/httpd/httpd/trunk/CHANGES?r1=790587&r2=790586&pathrev=790587	CONFIRM	Patch Vendor Advisory
3	http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/proxy/mod_proxy_http.c?r1=790587&r2=790586&pathrev=790587	CONFIRM	Patch Vendor Advisory
4	http://secunia.com/advisories/35691	SECUNIA	Not Applicable Vendor Advisory
5	http://svn.apache.org/viewvc?view=rev&revision=790587	CONFIRM	Vendor Advisory
6	http://www.mandriva.com/security/advisories?name=MDVSA-2009:149	MANDRIVA	Broken Link
7	https://rhn.redhat.com/errata/RHSA-2009-1148.html	REDHAT	Third Party Advisory
8	http://www.securitytracker.com/id?1022509	SECTRACK	Broken Link Third Party Advisory VDB Entry
9	http://osvdb.org/55553	OSVDB	Broken Link
10	http://www.redhat.com/support/errata/RHSA-2009-1156.html	REDHAT	Third Party Advisory
11	http://www.securityfocus.com/bid/35565	BID	Third Party Advisory VDB Entry
12	http://security.gentoo.org/glsa/glsa-200907-04.xml	GENTOO	Third Party Advisory
13	http://secunia.com/advisories/35721	SECUNIA	Not Applicable
14	http://www.ubuntu.com/usn/USN-802-1	UBUNTU	Third Party Advisory
15	http://secunia.com/advisories/35793	SECUNIA	Not Applicable
16	http://www.debian.org/security/2009/dsa-1834	DEBIAN	Third Party Advisory
17	http://secunia.com/advisories/35865	SECUNIA	Not Applicable
18	https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01363.html	FEDORA	Third Party Advisory
19	http://secunia.com/advisories/37152	SECUNIA	Not Applicable Vendor Advisory
20	http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00006.html	SUSE	Mailing List Third Party Advisory
21	http://support.apple.com/kb/HT3937	CONFIRM	Broken Link
22	http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html	APPLE	Broken Link Mailing List
23	http://www.vupen.com/english/advisories/2009/3184	VUPEN	Permissions Required Vendor Advisory
24	http://www-01.ibm.com/support/docview.wss?uid=swg1PK99480	AIXAPAR	Third Party Advisory
25	http://www-01.ibm.com/support/docview.wss?uid=swg1PK91259	AIXAPAR	Third Party Advisory
26	http://secunia.com/advisories/37221	SECUNIA	Not Applicable Vendor Advisory
27	http://wiki.rpath.com/Advisories:rPSA-2009-0142	CONFIRM	Broken Link
28	http://marc.info/?l=bugtraq&m=129190899612998&w=2	HP	Issue Tracking Mailing List Third Party Advisory
29	http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html	CONFIRM	Third Party Advisory
30	http://www.mandriva.com/security/advisories?name=MDVSA-2013:150	MANDRIVA	Broken Link
31	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9403	OVAL	Third Party Advisory
32	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8616	OVAL	Third Party Advisory
33	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12330	OVAL	Third Party Advisory
34	http://www.securityfocus.com/archive/1/507857/100/0/threaded	BUGTRAQ	Third Party Advisory VDB Entry
35	http://www.securityfocus.com/archive/1/507852/100/0/threaded	BUGTRAQ	Third Party Advisory VDB Entry
36	https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E	MISC
37	https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53%40%3Ccvs.httpd.apache.org%3E	MISC
38	https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f%40%3Ccvs.httpd.apache.org%3E	MISC
39	https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f%40%3Ccvs.httpd.apache.org%3E	MISC
40	https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7%40%3Ccvs.httpd.apache.org%3E	MISC
41	https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b%40%3Ccvs.httpd.apache.org%3E	MISC
42	https://lists.apache.org/thread.html/rb33be0aa9bd8cac9536293e3821dcd4cf8180ad95a8036eedd46365e%40%3Cusers.mina.apache.org%3E	MISC
43	https://lists.apache.org/thread.html/r7dd6be4dc38148704f2edafb44a8712abaa3a2be120d6c3314d55919%40%3Ccvs.httpd.apache.org%3E	MISC
44	https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E	MISC
45	https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b%40%3Ccvs.httpd.apache.org%3E	MISC
46	https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064%40%3Ccvs.httpd.apache.org%3E	MISC
47	https://lists.apache.org/thread.html/r84d043c2115176958562133d96d851495d712aa49da155d81f6733be%40%3Ccvs.httpd.apache.org%3E	MISC
48	https://lists.apache.org/thread.html/rc4c53a0d57b2771ecd4b965010580db355e38137c8711311ee1073a8%40%3Ccvs.httpd.apache.org%3E	MISC
49	https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24%40%3Ccvs.httpd.apache.org%3E	MISC

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-400	リソースの枯渇	https://cwe.mitre.org/data/definitions/400.html