PT-2018-1820 · Apache+5 · Apache Httpd+6

Nicolas Daniels

·

Publicado

2018-03-21

·

Atualizado

2022-09-07

·

CVE-2018-1312

CVSS v3.1

9.8

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Apache httpd versions 2.2.0 through 2.4.29
Description The issue is related to the generation of an HTTP Digest authentication challenge, where the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. This could allow an attacker to replay HTTP requests across servers in a cluster using a common Digest authentication configuration without detection. The estimated number of potentially affected devices is not specified.
Recommendations For Apache httpd versions 2.2.0 through 2.4.29, consider updating to a version where this issue is fixed, as the use of a pseudo-random seed for generating nonces is crucial for preventing replay attacks. As a temporary workaround, consider restricting access to the Digest authentication configuration to minimize the risk of exploitation. Avoid using the same Digest authentication configuration across multiple servers in a cluster until the issue is resolved.

Correção

Improper Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-287

Identificadores relacionados

ALT-PU-2018-1519
BDU:2018-01420
CESA-2019_1898
CVE-2018-1312
DLA-1389-1
DSA-4164-1
MGASA-2018-0460
RHSA-2018:3558
RHSA-2019:0367
RHSA-2019:1898
RHSA-2019_1898
SUSE-SU-2018:0879-1
SUSE-SU-2018:0901-1
SUSE-SU-2018:1079-1
SUSE-SU-2018:1161-1
SUSE-SU-2018:1161-2
USN-3627-1
USN-3627-2
USN-3937-2

Produtos afetados

Alt Linux
Apache Http Server
Apache Httpd
Centos
Red Hat
Suse
Ubuntu