CVE - CVE-2005-2088

CVE-ID
CVE-2005-2088	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The Apache HTTP server before 1.3.34, and 2.0.x before 2.0.55, when acting as an HTTP proxy, allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Apache to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20050606 A new whitepaper by Watchfire - HTTP Request Smuggling URL:http://seclists.org/lists/bugtraq/2005/Jun/0025.html MISC:http://www.watchfire.com/resources/HTTP-Request-Smuggling.pdf MISC:http://www.securiteam.com/securityreviews/5GP0220G0U.html MLIST:[apache-httpd-announce] 20051014 Apache HTTP Server 2.0.55 Released URL:http://marc.info/?l=apache-httpd-announce&m=112931556417329&w=3 CONFIRM:http://www.apache.org/dist/httpd/CHANGES_1.3 CONFIRM:http://www.apache.org/dist/httpd/CHANGES_2.0 CONFIRM:http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm CONFIRM:https://secure-support.novell.com/KanisaPlatform/Publishing/741/3222109_f.SAL_Public.html AIXAPAR:PK13959 URL:http://www-1.ibm.com/support/search.wss?rs=0&q=PK13959&apar=only AIXAPAR:PK16139 URL:http://www-1.ibm.com/support/search.wss?rs=0&q=PK16139&apar=only APPLE:APPLE-SA-2005-11-29 URL:http://docs.info.apple.com/article.html?artnum=302847 DEBIAN:DSA-803 URL:http://www.debian.org/security/2005/dsa-803 DEBIAN:DSA-805 URL:http://www.debian.org/security/2005/dsa-805 HP:HPSBUX02074 URL:http://www.securityfocus.com/archive/1/428138/100/0/threaded HP:SSRT051251 URL:http://www.securityfocus.com/archive/1/428138/100/0/threaded HP:HPSBUX02101 URL:http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00612828 HP:SSRT051128 URL:http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00612828 MANDRIVA:MDKSA-2005:130 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2005:130 REDHAT:RHSA-2005:582 URL:http://www.redhat.com/support/errata/RHSA-2005-582.html SLACKWARE:SSA:2005-310-04 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.600000 SUNALERT:102197 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102197-1 SUNALERT:102198 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102198-1 SUSE:SUSE-SA:2005:046 URL:http://www.novell.com/linux/security/advisories/2005_46_apache.html SUSE:SUSE-SR:2005:018 URL:http://www.novell.com/linux/security/advisories/2005_18_sr.html TRUSTIX:TSLSA-2005-0059 URL:http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.html UBUNTU:USN-160-2 URL:http://www.ubuntu.com/usn/usn-160-2 BID:14106 URL:http://www.securityfocus.com/bid/14106 BID:15647 URL:http://www.securityfocus.com/bid/15647 OVAL:oval:org.mitre.oval:def:11452 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11452 VUPEN:ADV-2005-2140 URL:http://www.vupen.com/english/advisories/2005/2140 VUPEN:ADV-2005-2659 URL:http://www.vupen.com/english/advisories/2005/2659 VUPEN:ADV-2006-0789 URL:http://www.vupen.com/english/advisories/2006/0789 VUPEN:ADV-2006-1018 URL:http://www.vupen.com/english/advisories/2006/1018 VUPEN:ADV-2006-4680 URL:http://www.vupen.com/english/advisories/2006/4680 OVAL:oval:org.mitre.oval:def:840 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A840 OVAL:oval:org.mitre.oval:def:1526 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1526 OVAL:oval:org.mitre.oval:def:1629 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1629 OVAL:oval:org.mitre.oval:def:1237 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1237 SECTRACK:1014323 URL:http://securitytracker.com/id?1014323 SECUNIA:17813 URL:http://secunia.com/advisories/17813 SECUNIA:14530 URL:http://secunia.com/advisories/14530 SECUNIA:17487 URL:http://secunia.com/advisories/17487 SECUNIA:19072 URL:http://secunia.com/advisories/19072 SECUNIA:19073 URL:http://secunia.com/advisories/19073 SECUNIA:19317 URL:http://secunia.com/advisories/19317 SECUNIA:17319 URL:http://secunia.com/advisories/17319 SECUNIA:19185 URL:http://secunia.com/advisories/19185 SECUNIA:23074 URL:http://secunia.com/advisories/23074 SREASON:604 URL:http://securityreason.com/securityalert/604
Assigning CNA
N/A
Date Entry Created
20050630	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20050630)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org