Latest Flaw In Apache Allows Attacker To Access Internal Directories
Security researcher Prutha Parikh discovered yet another reverse proxy vulnerability with Apache. The vulnerability was discovered as she was trying to write the signature for the older CVE-2011-4317 vulnerability. According to the security researcher, an attacker can manage to access the internal network if the vulnerability is successful exploited.
How Does It Work?
An attacker can make use of a crafted http request to bypass the security mechanism and exploit a fully patched version of Apache. This allows the attacker to access the internal network if reverse proxy rules are not properly configured.
Proof Of Concept:
The security researcher has demonstrated a POC at Qualys website here.
22 Responses to Latest Flaw In Apache Allows Attacker To Access Internal Directories
Great goods from you, man. I have understand your stuff previous to and you are just too excellent. I actually like what you have acquired here, really like what you’re saying and the way in which you say it. You make it entertaining and you still care for to keep it sensible. I can’t wait to read far more from you. This is really a tremendous website.
Thank you for the material, and your blog really looks impressive. Just what wp theme are you utilizing?
Good blog! I truly love how it is simple on my eyes and the data are well written. I’m wondering how I could be notified whenever a new post has been made. I’ve subscribed to your RSS feed which must do the trick! Have a great day! “A crime which is the crime of many none avenge.” by Lucan.
I believe you have remarked some very interesting points , thankyou for the post.
I think youve made some really interesting points. Not also many people would in fact think about this the way you just did. Im truly impressed that theres so a lot about this topic thats been uncovered and you did it so nicely, with so much class. Superior 1 you, man! Truly wonderful things here.
I dugg some of you post as I thought they were extremely helpful extremely helpful
Merely wanna remark that you have a very nice web site , I enjoy the style it really stands out.
Great write-up, I am normal visitor of one’s site, maintain up the excellent operate, and It is going to be a regular visitor for a long time.
I think this internet site holds some rattling wonderful information for everyone. “He who has not looked on Sorrow will never see Joy.” by Kahlil Gibran.
Wow! This can be one particular of the most helpful blogs We’ve ever arrive across on this subject. Actually Excellent. I am also a specialist in this topic so I can understand your effort.
I got what you mean , thankyou for posting .Woh I am happy to find this website through google. “Success is dependent on effort.” by Sophocles.
I simply could not leave your site before suggesting that I actually enjoyed the usual info an individual provide on your visitors? Is going to be again incessantly to check up on new posts.
Have you ever thought about adding a little bit more than just your articles? I mean, what you say is valuable and all. But think about if you added some great images or videos to give your posts more, “pop”! Your content is excellent but with pics and video clips, this blog could certainly be one of the most beneficial in its field. Superb blog!
I have read a few good stuff here. Definitely worth bookmarking for revisiting. I surprise how a lot effort you set to make one of these great informative website.
I like what you guys are up too. Such smart work and reporting! Carry on the excellent works guys I’ve incorporated you guys to my blogroll. I think it’ll improve the value of my site :).
Thanks for sharing superb informations. Your site is very cool. I’m impressed by the details that you’ve on this site. It reveals how nicely you understand this subject. Bookmarked this web page, will come back for extra articles. You, my friend, ROCK! I found simply the information I already searched all over the place and just could not come across. What a great website.
As soon as I found this website I went on reddit to share some of the love with them.
I gotta bookmark this internet site it seems very beneficial very useful
Like the blog
A danger foreseen is a danger avoided. werbegeschenke usb artikel
hey there and thank you for your info – I’ve definitely picked up something new from right here. I did however expertise several technical points using this web site, since I experienced to reload the web site a lot of times previous to I could get it to load correctly. I had been wondering if your hosting is OK? Not that I’m complaining, but slow loading instances times will often affect your placement in google and can damage your quality score if advertising and marketing with Adwords. Anyway I’m adding this RSS to my e-mail and can look out for much more of your respective interesting content. Make sure you update this again soon..
There’s a sreect about your post. ICTYBTIHTKY