PT-2015-1596 · Apache+6 · Apache Http Server+6

Régis Leroy

Published

2015-06-09

Updated

2023-12-14

CVE-2015-3183

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions prior to 2.4.14

Description The issue is related to the improper parsing of chunk headers in the chunked transfer coding implementation, allowing remote attackers to conduct HTTP request smuggling attacks via a crafted request. This is due to the mishandling of large chunk-size values and invalid chunk-extension characters in the modules/http/http filters.c module. A malicious client could force the server to misinterpret the request length, potentially allowing cache poisoning or credential hijacking if an intermediary proxy is in use.

Recommendations For Apache HTTP Server versions prior to 2.4.14, update to version 2.4.14 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable module modules/http/http filters.c to minimize the risk of exploitation. Avoid using the chunked transfer coding implementation until the issue is resolved.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-17CWE-20

Related Identifiers

ALT-PU-2016-1385

BDU:2015-10928

CESA-2015_1667

CESA-2015_1668

CVE-2015-3183

DLA-284-1

DSA-3325-1

DSA-3325-2

HPSBUX03512

MGASA-2015-0281

RHSA-2015:1666

RHSA-2015:1667

RHSA-2015:1668

RHSA-2015:2659

RHSA-2015:2660

RHSA-2015_1667

RHSA-2015_1668

RHSA-2016:0061

RHSA-2016:2054

RHSA-2016:2055

SUSE-SU-2015:1851-1

SUSE-SU-2015:1885-1

SUSE-SU-2015:1885-2

SUSE-SU-2015_1885-1

SUSE-SU-2015_1885-2

USN-2686-1

Affected Products

Alt Linux

Apache Http Server

Centos

Hp-Ux

Red Hat

Suse

Ubuntu

PT-2015-1596 · Apache+6 · Apache Http Server+6

CVE-2015-3183

Weakness Enumeration

Related Identifiers

Affected Products

References · 102