Signature Detail

HTTP: Apache SSI Cross-Side-Scripting in URL

This signature detects possible attempts to exploit a Cross-Site Scripting vulnerability in Apache. A successful attack can result in script execution.

Extended Description

Apache is reported to be vulnerable to cross site scripting attacks. This vulnerability is due to the SSI error pages of the webserver not being properly sanitized of malicious HTML code. Attacker-supplied HTML and script code may be executed on a web client visiting the malicious link in the context of the webserver. Attacks of this nature may make it possible for attackers to manipulate web content or to steal cookie-based authentication credentials. It may be possible to take arbitrary actions as the victim user.

Affected Products

• Apache Software Foundation Apache 1.3
• Apache Software Foundation Apache 1.3.0
• Apache Software Foundation Apache 1.3.1
• Apache Software Foundation Apache 1.3.11
• Apache Software Foundation Apache 1.3.12
• Apache Software Foundation Apache 1.3.14
• Apache Software Foundation Apache 1.3.17
• Apache Software Foundation Apache 1.3.18
• Apache Software Foundation Apache 1.3.19
• Apache Software Foundation Apache 1.3.20
• Apache Software Foundation Apache 1.3.22
• Apache Software Foundation Apache 1.3.23
• Apache Software Foundation Apache 1.3.24
• Apache Software Foundation Apache 1.3.25
• Apache Software Foundation Apache 1.3.26
• Apache Software Foundation Apache 1.3.3
• Apache Software Foundation Apache 1.3.4
• Apache Software Foundation Apache 1.3.6
• Apache Software Foundation Apache 1.3.9
• Apache Software Foundation Apache 2.0.0
• Apache Software Foundation Apache 2.0.28
• Apache Software Foundation Apache 2.0.32
• Apache Software Foundation Apache 2.0.35
• Apache Software Foundation Apache 2.0.36
• Apache Software Foundation Apache 2.0.37
• Apache Software Foundation Apache 2.0.38
• Apache Software Foundation Apache 2.0.39
• Apache Software Foundation Apache 2.0.40
• Apache Software Foundation Apache 2.0.41
• Apache Software Foundation Apache 2.0.42
• HP HP-UX 11.0.0
• HP HP-UX 11.11.0
• HP HP-UX 11.20.0
• HP HP-UX 11.22.0
• HP OpenView Network Node Manager 6.2.0 HP-UX 10.X
• HP OpenView Network Node Manager 6.2.0 HP-UX 11.X
• HP OpenView Network Node Manager 6.2.0 Solaris
• HP OpenVMS Secure Web Server 1.1
• HP OpenVMS Secure Web Server 1.1.0 -1
• HP OpenVMS Secure Web Server 1.2.0
• HP OpenVMS Secure Web Server 2.1-1
• HP VirtualVault 4.5.0
• HP VirtualVault 4.6.0
• IBM HTTP Server 1.3.19
• Oracle Application Server 1.0.2
• Oracle Application Server 1.0.2.1S
• Oracle Application Server 1.0.2.2
• Oracle Application Server 9.0.2
• Oracle Application Server 9.0.2.1
• Oracle Application Server 9.0.2 R2
• Oracle Oracle8 8.1.7
• Oracle Oracle8i Enterprise Edition 8.1.7 .0.0
• Oracle Oracle8i Enterprise Edition 8.1.7 .1.0
• Oracle Oracle8i Standard Edition 8.1.7
• Oracle Oracle8i Standard Edition 8.1.7 .1
• Oracle Oracle9i Application Server 1.0.2
• Oracle Oracle9i Application Server 1.0.2 .1s
• Oracle Oracle9i Application Server 1.0.2 .2
• Oracle Oracle9i Application Server 9.0.2
• Oracle Oracle9i Application Server 9.0.2 Release 2
• Oracle Oracle9i Application Server Reports 9.0.2
• Oracle Oracle9i Application Server Reports 9.0.2 .1
• Oracle Oracle9i Personal Edition 9.2.1
• Oracle Oracle9i Personal Edition 9.2.2
• Oracle Oracle9i Standard Edition 9.0.0
• Oracle Oracle9i Standard Edition 9.0.1
• Oracle Oracle9i Standard Edition 9.0.1 .2
• Oracle Oracle9i Standard Edition 9.0.1 .3
• Oracle Oracle9i Standard Edition 9.0.2
• Oracle Oracle9i Standard Edition 9.2.0 .0.1
• Oracle Oracle9i Standard Edition 9.2.0 .0.2
• Oracle Oracle9i Standard Edition 9.2.0 .1
• Oracle Oracle9i Standard Edition 9.2.0 .2
• Sun Cobalt Qube 3
• Sun Cobalt RaQ 4
• Sun Cobalt RaQ 550
• Sun Cobalt RaQ XTR

References

• BugTraq: 5847
• CVE: CVE-2002-0840
• URL: http://marc.theaimsgroup.com/?l=bugtraq&m=103357160425708&w=2
• URL: http://www.apacheweek.com/issues/02-10-04