CVE 2005-2088
The Apache HTTP server before 1.3.34, and 2.0.x before 2.0.55, when acting as an HTTP proxy, allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Apache to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
Related bugs and status
CVE-2005-2088 (Candidate) is related to these bugs:
Bug #19844: SECURITY: HTTP proxy responses with both Transfer-Encoding and Content-Length headers (CAN-2005-2088)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
19844 | SECURITY: HTTP proxy responses with both Transfer-Encoding and Content-Length headers (CAN-2005-2088) | apache2 (Ubuntu) | High | Fix Released | ||
19844 | SECURITY: HTTP proxy responses with both Transfer-Encoding and Content-Length headers (CAN-2005-2088) | apache2 (Debian) | Unknown | Fix Released |
Bug #19887: SECURITY: buffer-overrun in apache2-ssl (CAN-2005-1268)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
19887 | SECURITY: buffer-overrun in apache2-ssl (CAN-2005-1268) | apache2 (Ubuntu) | High | Fix Released | ||
19887 | SECURITY: buffer-overrun in apache2-ssl (CAN-2005-1268) | apache2 (Debian) | Unknown | Fix Released |
Bug #19888: Security: buffer-overrun in apache2-ssl
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
19888 | Security: buffer-overrun in apache2-ssl | apache2 (Ubuntu) | High | Invalid | ||
19888 | Security: buffer-overrun in apache2-ssl | apache2 (Debian) | Unknown | Fix Released |
Bug #20654: SECURITY: HTTP proxy responses with both Transfer-Encoding and Content-Length headers (CAN-2005-2088)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
20654 | SECURITY: HTTP proxy responses with both Transfer-Encoding and Content-Length headers (CAN-2005-2088) | apache (Ubuntu) | High | Fix Released | ||
20654 | SECURITY: HTTP proxy responses with both Transfer-Encoding and Content-Length headers (CAN-2005-2088) | apache (Debian) | Unknown | Fix Released |
Bug #21218: apache2 security update breaks ssl+svn
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
21218 | apache2 security update breaks ssl+svn | apache2 (Ubuntu) | High | Fix Released | ||
21218 | apache2 security update breaks ssl+svn | apache2 (Debian) | Unknown | Fix Released |
Bug #23493: error: `PEM_F_DEF_CALLBACK' undeclared
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
23493 | error: `PEM_F_DEF_CALLBACK' undeclared | apache2 (Ubuntu) | Medium | Fix Released | ||
23493 | error: `PEM_F_DEF_CALLBACK' undeclared | apache2 (Debian) | Unknown | Fix Released |
Bug #24120: apache: FTBFS with openssl 0.9.8: EVP_F_EVP_DECRYPTFINAL undeclared
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
24120 | apache: FTBFS with openssl 0.9.8: EVP_F_EVP_DECRYPTFINAL undeclared | apache (Ubuntu) | High | Fix Released | ||
24120 | apache: FTBFS with openssl 0.9.8: EVP_F_EVP_DECRYPTFINAL undeclared | apache (Debian) | Unknown | Fix Released |
See the
CVE page on Mitre.org
for more details.