ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Jobs
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


Server platforms Toolkit

Apache flaw leaves server wide open

John McCormick

Published: 03 Sep 2002 12:16 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

According to a vulnerability note published by Apache.org. the problem is apparently found only in the new Apache version 2.0, so if you haven't upgraded, you may not be affected. However, that may not be a completely safe assumption, and you should probably consider updating to the repaired version, which is already available. Making use of this vulnerability, an attacker could view and download any file on the affected server as well as run any arbitrary code, which, of course, makes this about as serious as any flaw can get.

Applicability -- all non-UNIX platforms using Apache 2.0
Although this problem doesn't affect UNIX and Linux variants, it does apply to more than just Microsoft Windows platforms. You should check it out even if you are running NetWare or OS/2 (both of which are definitely vulnerable) or any other non-UNIX platform. The original Bugtraq announcement states that the flaw affects any systems that support backslash paths.

The versions of Apache that are vulnerable include all releases of 2.0 through version 2.00.39.

Linux/UNIX administrators are also being urged to update their Apache software even though this particular threat doesn't appear to apply to their systems.

Risk level -- critical
This vulnerability can open up a server to serious damage. According to an online report from PC World, this is exactly the sort of flaw that made the Code Red and Nimda worms possible.

Fix -- patch and update
There are two fixes. First, you can apply a quick-and-dirty patch as follows, according to the report published by The Register:

Add the following line to the httpd.conf file before the first "Alias" or "Redirect" directive:

RedirectMatch 400 "\\\.\."

That quick fix is echoed at the Apache.org site and apparently came from the researcher who discovered and reported the flaw to Apache.org, since it's in his Bugtraq announcement. Be sure to double-check the code reproduced here before applying it.

A permanent fix is to upgrade your Apache installation to version 2.0.40 or later. See the Apache site for the upgrade links.

Next

Previous

1 2


  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with Konica

Did you find this article useful?
95 out of 218 people found this useful


In association with Intel

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Server platforms


Company/Topic Alerts

Create a new alert from the list below:










Related Jobs

Application Support - Equities - UNIX PERL SHELL SQL FIX PERM LONDON

Application Support - Futures Clearing - SQL UNIX WINDOWS PERM LONDON

Application Support - Junior Level Role - C++ Unix SQL - PERM