CVE-2005-2088 — HTTP Request Smuggling in Apache Http Server

CWE-444 — HTTP Request Smuggling8 documents8 sources

Severity

4.3MEDIUMNVD

EPSS

54.3%

top 1.97%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Http Server Debian Linux

Timeline

PublishedJul 5

Latest updateMay 1

Description

The Apache HTTP server before 1.3.34, and 2.0.x before 2.0.55, when acting as an HTTP proxy, allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Apache to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

▶NVDapache/http_server2.0.35 — 2.0.55

Also affects: Debian Linux 3.0, 3.1

🔴Vulnerability Details

GHSA

GHSA-vq42-chwj-gj93: The Apache HTTP server before 1↗2022-05-01

▶

OSV

CVE-2005-2088: The Apache HTTP server before 1↗2005-07-05

▶

CVEList

CVE-2005-2088: The Apache HTTP server before 1↗2005-06-30

▶

📋Vendor Advisories

Ubuntu

Apache 2 vulnerabilities↗2005-08-04

▶

Red Hat

security flaw↗2005-06-12

▶

Debian

CVE-2005-2088: apache2 - The Apache HTTP server before 1.3.34, and 2.0.x before 2.0.55, when acting as an...↗2005

▶

💬Community

Bugzilla

CVE-2005-2088 security flaw↗2018-08-16

▶