VDB
RHSA-2012%3A0542
RHSA-2012%3A0542
PUBLISHED
Red Hat Security Advisory: httpd security and bug fix update
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:jboss_enterprise_web_server:1::el5 | httpd-devel | 0, 0 |
| Red Hat:jboss_enterprise_web_server:1::el6 | httpd | 0, 0 |
| Red Hat:jboss_enterprise_web_server:1::el5 | httpd-manual | 0, 0 |
| Red Hat:jboss_enterprise_web_server:1::el6 | httpd-tools | 0, 0 |
| Red Hat:jboss_enterprise_web_server:1::el6 | httpd-manual | 0, 0 |
| Red Hat:jboss_enterprise_web_server:1::el5 | httpd | 0, 0 |
| Red Hat:jboss_enterprise_web_server:1::el6 | httpd-devel | 0, 0 |
| Red Hat:jboss_enterprise_web_server:1::el6 | mod_ssl | 0, 0 |
| Red Hat:jboss_enterprise_web_server:1::el5 | mod_ssl | 0, 0 |
Exploit Intelligence
- Tests for the CVE-2011-3368 (Reverse Proxy Bypass) vulnerability in Apache HTTP server's reverse proxy mode. The script will run 3 tests: o the loopback test, with 3 payloads to handle different rewrite rules o the internal hosts test. According to Contextis, we expect a delay before a server error. o The external website test. This does not mean that you can reach a LAN ip, but this is a relevant issue anyway. References: * http://www.contextis.com/research/blog/reverseproxybypass/ (nmap-nse)
- Tests for the CVE-2011-3368 (Reverse Proxy Bypass) vulnerability in Apache HTTP server's reverse proxy mode. The script will run 3 tests: o the loopback test, with 3 payloads to handle different rewrite rules o the internal hosts test. According to Contextis, we expect a delay before a server error. o The external website test. This does not mean that you can reach a LAN ip, but this is a relevant issue anyway. References: * http://www.contextis.com/research/blog/reverseproxybypass/ (nmap-nse)
- Tests for the CVE-2011-3368 (Reverse Proxy Bypass) vulnerability in Apache HTTP server's reverse proxy mode. The script will run 3 tests: o the loopback test, with 3 payloads to handle different rewrite rules o the internal hosts test. According to Contextis, we expect a delay before a server error. o The external website test. This does not mean that you can reach a LAN ip, but this is a relevant issue anyway. References: * http://www.contextis.com/research/blog/reverseproxybypass/ (nmap-nse)
- Tests for the CVE-2011-3368 (Reverse Proxy Bypass) vulnerability in Apache HTTP server's reverse proxy mode. The script will run 3 tests: o the loopback test, with 3 payloads to handle different rewrite rules o the internal hosts test. According to Contextis, we expect a delay before a server error. o The external website test. This does not mean that you can reach a LAN ip, but this is a relevant issue anyway. References: * http://www.contextis.com/research/blog/reverseproxybypass/ (nmap-nse)
- Tests for the CVE-2011-3368 (Reverse Proxy Bypass) vulnerability in Apache HTTP server's reverse proxy mode. The script will run 3 tests: * the loopback test, with 3 payloads to handle different rewrite rules * the internal hosts test. According to Contextis, we expect a delay before a server error. * The external website test. This does not mean that you can reach a LAN ip, but this is a relevant issue anyway. References: * http://www.contextis.com/research/blog/reverseproxybypass/ (nmap-nse)
- Tests for the CVE-2011-3368 (Reverse Proxy Bypass) vulnerability in Apache HTTP server's reverse proxy mode. The script will run 3 tests: * the loopback test, with 3 payloads to handle different rewrite rules * the internal hosts test. According to Contextis, we expect a delay before a server error. * The external website test. This does not mean that you can reach a LAN ip, but this is a relevant issue anyway. References: * http://www.contextis.com/research/blog/reverseproxybypass/ (nmap-nse)
Timeline
- Nov 17, 2011 PoC Published
- May 7, 2012 CVE Published
- Jan 6, 2013 PoC Published
- May 27, 2014 PoC Published
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
- Apr 29, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2012:0542 advisory
- https://access.redhat.com/security/updates/classification/#moderate article
- https://rhn.redhat.com/errata/RHSA-2011-1329.html article
- https://bugzilla.redhat.com/show_bug.cgi?id=736690 report
- https://bugzilla.redhat.com/show_bug.cgi?id=740045 report
- https://bugzilla.redhat.com/show_bug.cgi?id=749071 report
- https://bugzilla.redhat.com/show_bug.cgi?id=769844 report
- https://bugzilla.redhat.com/show_bug.cgi?id=773744 report
- https://bugzilla.redhat.com/show_bug.cgi?id=785065 report
- https://bugzilla.redhat.com/show_bug.cgi?id=785069 report
- https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_0542.json advisory
- https://access.redhat.com/security/cve/CVE-2011-3348 report
- https://www.cve.org/CVERecord?id=CVE-2011-3348 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2011-3348 advisory
- http://httpd.apache.org/security/vulnerabilities_22.html#2.2.21 article
- https://access.redhat.com/security/cve/CVE-2011-3368 report
- https://www.cve.org/CVERecord?id=CVE-2011-3368 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2011-3368 advisory
- http://www.contextis.com/research/blog/reverseproxybypass/ article
- https://access.redhat.com/security/cve/CVE-2011-3607 report
…and 11 more