Vulnerability Details : CVE-2010-0010
Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size that triggers a heap-based buffer overflow.
Vulnerability category: OverflowExecute codeDenial of service
Products affected by CVE-2010-0010
- cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:0.8.11:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:0.8.14:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.12:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.14:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.11:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.10:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.17:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.19:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.18:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.22:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.20:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.25:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.24:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.26:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.23:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.27:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.2:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.13:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.15:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.28:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.29:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.31:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.32:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.33:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.30:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.37:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.34:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.36:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.38:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.35:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.39:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:apache:http_server:1.3.40:*:*:*:*:*:*:*
Threat overview for CVE-2010-0010
Top countries where our scanners detected CVE-2010-0010
Top open port discovered on systems with this issue
80
IPs affected by CVE-2010-0010 71,046
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2010-0010!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2010-0010
95.43%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2010-0010
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
CWE ids for CVE-2010-0010
-
Assigned by: nvd@nist.gov (Primary)
Vendor statements for CVE-2010-0010
-
Red Hat 2010-02-03This issue does not affect the Apache HTTP Server versions 2 and greater. This flaw does not affect any supported versions of Red Hat Enterprise Linux. This flaw does affect Red Hat Network Proxy and Red Hat Network Satellite. While those products do not use this feature, we are tracking the issue with the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0010
References for CVE-2010-0010
-
http://packetstormsecurity.org/1001-exploits/modproxy-overflow.txt
Files ≈ Packet StormExploit
-
http://www.securitytracker.com/id?1023533
Apache mod_proxy Integer Overflow May Let Remote Users Execute Arbitrary Code - SecurityTracker
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/55941
mod_proxy module for Apache ap_proxy_send_fb() buffer overflow CVE-2010-0010 Vulnerability Report
-
http://blog.pi3.com.pl/?p=69
CVE-2010-0010: Apache mod_proxy vulnerability : pi3 blog
-
http://lists.opensuse.org/opensuse-security-announce/2010-04/msg00006.html
[security-announce] SUSE Security Summary Report: SUSE-SR:2010:010
-
http://www.securityfocus.com/archive/1/509185/100/0/threaded
SecurityFocus
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7923
Repository / Oval Repository
-
http://www.vupen.com/english/advisories/2010/1001
Webmail | OVH- OVH
-
http://www.securityfocus.com/bid/37966
Apache 1.3 mod_proxy HTTP Chunked Encoding Integer Overflow VulnerabilityExploit
-
https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e@%3Ccvs.httpd.apache.org%3E
svn commit: r1075470 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_2
-
https://lists.apache.org/thread.html/rad2acee3ab838b52c04a0698b1728a9a43467bf365bd481c993c535d@%3Ccvs.httpd.apache.org%3E
svn commit: r1073149 [7/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/ - Pony Mail
-
https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E
svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/ - Pony Mail
-
http://httpd.apache.org/dev/dist/CHANGES_1.3.42
404 Not Found
-
http://site.pi3.com.pl/adv/mod_proxy.txt
-
https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E
Pony Mail!
-
http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0589.html
Exploit
-
http://marc.info/?l=bugtraq&m=130497311408250&w=2
'[security bulletin] HPSBOV02683 SSRT090208 rev.1 - HP Secure Web Server (SWS) for OpenVMS running Ap' - MARC
-
https://lists.apache.org/thread.html/r2295080a257bad27ea68ca0af12fc715577f9e84801eae116a33107e@%3Ccvs.httpd.apache.org%3E
svn commit: r1073139 [6/13] - in /websites/staging/httpd/trunk/content: ./ security/json/ - Pony Mail
-
https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5@%3Ccvs.httpd.apache.org%3E
svn commit: r1073140 [1/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html s
-
https://lists.apache.org/thread.html/reb7c64aeea604bf948467d9d1cab8ff23fa7d002be1964bcc275aae7@%3Ccvs.httpd.apache.org%3E
svn commit: r1888194 [6/13] - /httpd/site/trunk/content/security/json/ - Pony Mail
-
http://www.vupen.com/english/advisories/2010/0240
Webmail | OVH- OVHVendor Advisory
Jump to