Vulnerability Details : CVE-2014-2323

SQL injection vulnerability in mod_mysql_vhost.c in lighttpd before 1.4.35 allows remote attackers to execute arbitrary SQL commands via the host name, related to request_check_hostname.

Vulnerability category: Sql Injection

Published 2014-03-14 15:55:06

Updated 2021-02-26 23:50:35

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2014-2323

Probability of exploitation activity in the next 30 days: 96.76%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 100 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2014-2323

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	[email protected]
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	[email protected]
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2014-2323

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component.

Assigned by: [email protected] (Primary)

References for CVE-2014-2323

http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00006.html

Mailing List;Third Party Advisory

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00023.html

Mailing List;Third Party Advisory

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00002.html

Mailing List;Third Party Advisory

CVEs referencing this url
http://marc.info/?l=bugtraq&m=141576815022399&w=2

Mailing List;Third Party Advisory

CVEs referencing this url
http://seclists.org/oss-sec/2014/q1/564

Mailing List;Third Party Advisory

CVEs referencing this url
http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2014_01.txt

Exploit;Vendor Advisory

CVEs referencing this url
http://www.lighttpd.net/2014/3/12/1.4.35/

Patch;Vendor Advisory

CVEs referencing this url
http://jvn.jp/en/jp/JVN37417423/index.html

Third Party Advisory

CVEs referencing this url
http://www.debian.org/security/2014/dsa-2877

Third Party Advisory

CVEs referencing this url
http://seclists.org/oss-sec/2014/q1/561

Exploit;Mailing List;Third Party Advisory

CVEs referencing this url

Products affected by CVE-2014-2323

Debian » Debian Linux » Version: 6.0
cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 7.0
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Matching versions
Debian » Debian Linux » Version: 8.0
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Matching versions
Suse » Linux Enterprise Software Development Kit » Version: 11 Update SP3
cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp3:*:*:*:*:*:*
Matching versions
Suse » Linux Enterprise High Availability Extension » Version: 11 Update SP3
cpe:2.3:o:suse:linux_enterprise_high_availability_extension:11:sp3:*:*:*:*:*:*
Matching versions
Lighttpd » Lighttpd
Versions before (<) 1.4.35
cpe:2.3:a:lighttpd:lighttpd:*:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 11.4
cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 12.3
cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.1
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
Matching versions