Signature Detail

HTTP: Apache HTTPD Error Code 400 httpOnly Cookie Handling Information Disclosure

This signature detects attempts to exploit a known vulnerability against Apache httpd. A successful attack can lead to unauthorized information disclosure and loss of sensitive information.

Extended Description

Apache HTTP Server is prone to an information-disclosure vulnerability. The issue occurs in the default error response for status code 400. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. The vulnerability affects Apache HTTP Server versions 2.2.0 through 2.2.21.

Affected Products

• Apache Software Foundation Apache 2.2.0
• Apache Software Foundation Apache 2.2.10
• Apache Software Foundation Apache 2.2.11
• Apache Software Foundation Apache 2.2.12
• Apache Software Foundation Apache 2.2.13
• Apache Software Foundation Apache 2.2.14
• Apache Software Foundation Apache 2.2.15
• Apache Software Foundation Apache 2.2.16
• Apache Software Foundation Apache 2.2.17
• Apache Software Foundation Apache 2.2.18
• Apache Software Foundation Apache 2.2.19
• Apache Software Foundation Apache 2.2.2
• Apache Software Foundation Apache 2.2.20
• Apache Software Foundation Apache 2.2.21
• Apache Software Foundation Apache 2.2.3
• Apache Software Foundation Apache 2.2.4
• Apache Software Foundation Apache 2.2.5
• Apache Software Foundation Apache 2.2.6
• Apache Software Foundation Apache 2.2.8
• Apache Software Foundation Apache 2.2.9
• Avaya Aura Application Enablement Services 5.2
• Avaya Aura Application Enablement Services 5.2.1
• Avaya Aura Application Enablement Services 5.2.2
• Avaya Aura Application Enablement Services 5.2.3
• Avaya Aura Application Enablement Services 6.1
• Avaya Aura Application Enablement Services 6.1.1
• Avaya Aura Communication Manager 6.0
• Avaya Aura Communication Manager 6.0.1
• Avaya Aura Communication Manager Utility Services 6.0
• Avaya Aura Communication Manager Utility Services 6.1
• Avaya Aura Communication Manager Utility Services 6.2
• Avaya Aura Experience Portal 6.0
• Avaya Aura Messaging 6.0
• Avaya Aura Messaging 6.0.1
• Avaya Aura Messaging 6.1
• Avaya Aura Session Manager 1.0
• Avaya Aura Session Manager 1.1
• Avaya Aura Session Manager 5.2
• Avaya Aura Session Manager 5.2 SP1
• Avaya Aura Session Manager 5.2 SP2
• Avaya Aura Session Manager 6.0
• Avaya Aura Session Manager 6.0 SP1
• Avaya Aura Session Manager 6.1
• Avaya Aura Session Manager 6.1.1
• Avaya Aura Session Manager 6.1.2
• Avaya Aura Session Manager 6.1.3
• Avaya Aura Session Manager 6.1 Sp1
• Avaya Aura Session Manager 6.1 SP2
• Avaya IP Office Application Server 6.0
• Avaya IP Office Application Server 6.1
• Avaya IP Office Application Server 7.0
• Avaya IP Office Application Server 8.0
• Avaya Voice Portal 5.0
• Avaya Voice Portal 5.0 SP1
• Avaya Voice Portal 5.0 SP2
• Avaya Voice Portal 5.1
• Avaya Voice Portal 5.1
• Avaya Voice Portal 5.1.1
• Avaya Voice Portal 5.1.2
• Avaya Voice Portal 5.1 SP1
• Debian Linux 6.0 amd64
• Debian Linux 6.0 arm
• Debian Linux 6.0 ia-32
• Debian Linux 6.0 ia-64
• Debian Linux 6.0 mips
• Debian Linux 6.0 powerpc
• Debian Linux 6.0 s/390
• Debian Linux 6.0 sparc
• Gentoo Linux
• HP HP-UX B.11.11
• HP HP-UX B.11.23
• HP HP-UX B.11.31
• HP Onboard Administrator 3.50
• HP Onboard Administrator 3.55
• HP OpenView Network Node Manager 7.53 - Hp-Ux
• HP OpenView Network Node Manager 7.53 - Linux
• HP OpenView Network Node Manager 7.53 - Solaris
• HP System Management Homepage 6.0
• HP System Management Homepage 6.1
• HP System Management Homepage 6.2
• HP System Management Homepage 6.3
• HP System Management Homepage 7.0
• HP System Management Homepage 7.1
• Mandriva Enterprise Server 5
• Mandriva Enterprise Server 5 X86 64
• Mandriva Linux Mandrake 2010.1
• Mandriva Linux Mandrake 2010.1 X86 64
• Mandriva Linux Mandrake 2011
• Mandriva Linux Mandrake 2011 x86_64
• Oracle Enterprise Linux 5
• Oracle Enterprise Linux 6
• Oracle Enterprise Linux 6.2
• Red Hat Enterprise Linux 5 Server
• Red Hat Enterprise Linux Desktop 5 Client
• Red Hat Enterprise Linux Desktop 6
• Red Hat Enterprise Linux Desktop Optional 6
• Red Hat Enterprise Linux Desktop Workstation 5 Client
• Red Hat Enterprise Linux HPC Node 6
• Red Hat Enterprise Linux HPC Node Optional 6
• Red Hat Enterprise Linux Server 6
• Red Hat Enterprise Linux Workstation 6
• Red Hat Fedora 15
• Red Hat Fedora 16
• Red Hat JBoss Enterprise Web Server for RHEL 5 Server 1.0.0
• Red Hat JBoss Enterprise Web Server for RHEL 6 1.0.0
• Slackware Linux 12.0
• Slackware Linux 12.1
• Slackware Linux 12.2
• Slackware Linux 13.0
• Slackware Linux 13.0 X86 64
• Slackware Linux 13.1
• Slackware Linux 13.1 X86 64
• Slackware Linux 13.37
• Slackware Linux 13.37 x86_64
• Slackware Linux -Current
• Slackware Linux X86 64 -Current
• SuSE SUSE Linux Enterprise SDK 10 SP4
• SuSE SUSE Linux Enterprise SDK 11 SP1
• SuSE SUSE Linux Enterprise Server 10 SP4
• SuSE SUSE Linux Enterprise Server 11 SP1
• SuSE SUSE Linux Enterprise Server for VMware 11 SP1
• Ubuntu Ubuntu Linux 10.04 Amd64
• Ubuntu Ubuntu Linux 10.04 ARM
• Ubuntu Ubuntu Linux 10.04 I386
• Ubuntu Ubuntu Linux 10.04 Powerpc
• Ubuntu Ubuntu Linux 10.04 Sparc
• Ubuntu Ubuntu Linux 10.10 amd64
• Ubuntu Ubuntu Linux 10.10 ARM
• Ubuntu Ubuntu Linux 10.10 i386
• Ubuntu Ubuntu Linux 10.10 powerpc
• Ubuntu Ubuntu Linux 11.04 amd64
• Ubuntu Ubuntu Linux 11.04 ARM
• Ubuntu Ubuntu Linux 11.04 i386
• Ubuntu Ubuntu Linux 11.04 powerpc
• Ubuntu Ubuntu Linux 11.10 amd64
• Ubuntu Ubuntu Linux 11.10 i386
• Ubuntu Ubuntu Linux 8.04 LTS Amd64
• Ubuntu Ubuntu Linux 8.04 LTS I386
• Ubuntu Ubuntu Linux 8.04 LTS Lpia
• Ubuntu Ubuntu Linux 8.04 LTS Powerpc
• Ubuntu Ubuntu Linux 8.04 LTS Sparc

References

• BugTraq: 51706
• CVE: CVE-2012-0053