Find the answer to your Linux question:
Results 1 to 3 of 3
Hi all, I am getting following alert in report generated for Bugzilla: Apache 'mod_proxy_ftp' Module Command Injection Vulnerability (Linux) Risk:High Application:http Port:80 Protocol:tcp Overview: The host is running Apache and ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Nov 2010
    Posts
    3

    Apache 'mod_proxy_ftp' Module Command Injection Vulnerability


    Hi all,
    I am getting following alert in report generated for Bugzilla:



    Apache 'mod_proxy_ftp' Module Command Injection Vulnerability (Linux)
    Risk:High
    Application:http
    Port:80
    Protocol:tcp
    Overview: The host is running Apache and is prone to Command Injection
    vulnerability.
    Vulnerability Insight:
    The flaw is due to error in the mod_proxy_ftp module which can be exploited
    via vectors related to the embedding of these commands in the Authorization
    HTTP header.
    Impact:
    Successful exploitation could allow remote attackers to bypass intended access
    restrictions in the context of the affected application, and can cause the
    arbitrary command injection.
    Impact Level: Application
    Affected Software/OS:
    Apache HTTP Server on Linux.
    Risk factor: High
    Summary: Check for the version of Apache
    Version: $Revision: 1.0$

    apart from upgrading apache is there anything that can be done to resolve this issue?

    Thanks & regards

  2. #2
    Linux Engineer
    Join Date
    Apr 2012
    Location
    Virginia, USA
    Posts
    896
    You should keep apache up to date with security patches, as best as possible.

    If you cannot update apache, you can disable that module.

  3. #3
    Just Joined!
    Join Date
    Nov 2010
    Posts
    3
    Quote Originally Posted by mizzle View Post
    You should keep apache up to date with security patches, as best as possible.

    If you cannot update apache, you can disable that module.
    Thanks for replying mizzle..yeah i also think upgrading apache would be helpful.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •