CVE-2014-0242
published 2019-12-09CVE-2014-0242: mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers to obtain sensitive information via the Content-Type header…
PriorityP352high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
8.53%
94.4th percentile
mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers to obtain sensitive information via the Content-Type header which is generated from memory that may have been freed and then overwritten by a separate thread.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | mod-wsgi | < mod-wsgi 3.4-3 (bookworm) | mod-wsgi 3.4-3 (bookworm) |
| mod_wsgi | mod_wsgi | — | — |
| modwsgi | mod_wsgi | < 3.4 | 3.4 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
vendor_ubuntu6.2MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jf6g-4gpq-f62c: mod_wsgi module before 3
ghsa_unreviewed·2022-05-17
CVE-2014-0242 [HIGH] CWE-200 GHSA-jf6g-4gpq-f62c: mod_wsgi module before 3
mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers to obtain sensitive information via the Content-Type header which is generated from memory that may have been freed and then overwritten by a separate thread.
OSV
CVE-2014-0242: mod_wsgi module before 3
osv·2019-12-09·CVSS 7.5
CVE-2014-0242 [HIGH] CVE-2014-0242: mod_wsgi module before 3
mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers to obtain sensitive information via the Content-Type header which is generated from memory that may have been freed and then overwritten by a separate thread.
OSV
mod-wsgi vulnerabilities
osv·2014-05-26·CVSS 6.2
CVE-2014-0240 [MEDIUM] mod-wsgi vulnerabilities
mod-wsgi vulnerabilities
Róbert Kisteleki discovered mod_wsgi incorrectly checked setuid return
values. A malicious application could use this issue to cause a local
privilege escalation when using daemon mode. (CVE-2014-0240)
Buck Golemon discovered that mod_wsgi used memory that had been freed.
A remote attacker could use this issue to read process memory via the
Content-Type response header. This issue only affected Ubuntu 12.04 LTS.
(CVE-2014-0242)
Ubuntu
mod_wsgi vulnerabilities
vendor_ubuntu·2014-05-26·CVSS 6.2
CVE-2014-0240 [MEDIUM] mod_wsgi vulnerabilities
Title: mod_wsgi vulnerabilities
Summary: mod_wsgi could be made to run programs as an administrator if it executes
a specially crafted file.
mod_wsgi could be made to expose sensitive information over the network.
Róbert Kisteleki discovered mod_wsgi incorrectly checked setuid return
values. A malicious application could use this issue to cause a local
privilege escalation when using daemon mode. (CVE-2014-0240)
Buck Golemon discovered that mod_wsgi used memory that had been freed.
A remote attacker could use this issue to read process memory via the
Content-Type response header. This issue only affected Ubuntu 12.04 LTS.
(CVE-2014-0242)
Instructions: After a standard system update you need to restart apache2 to make
all the necessary changes.
Red Hat
mod_wsgi: information leak
vendor_redhat·2014-05-21·CVSS 7.5
CVE-2014-0242 [HIGH] CWE-200 mod_wsgi: information leak
mod_wsgi: information leak
mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers to obtain sensitive information via the Content-Type header which is generated from memory that may have been freed and then overwritten by a separate thread.
Statement: Red Hat Update Infrastructure 2.1.3 is now in Production 2 Phase of the support and maintenance life cycle. This has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Update Infrastructure Life Cycle: https://access.redhat.com/support/policy/updates/rhui.
Package: mod_wsgi (Red Hat Enterprise Linux 7) - Not affected
Package: python27-mod_wsgi (Red Hat OpenShift Enterprise 2) - Not affected
Debian
CVE-2014-0242: mod-wsgi - mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow r...
vendor_debian·2014·CVSS 7.5
CVE-2014-0242 [HIGH] CVE-2014-0242: mod-wsgi - mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow r...
mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers to obtain sensitive information via the Content-Type header which is generated from memory that may have been freed and then overwritten by a separate thread.
Scope: local
bookworm: resolved (fixed in 3.4-3)
bullseye: resolved (fixed in 3.4-3)
forky: resolved (fixed in 3.4-3)
sid: resolved (fixed in 3.4-3)
trixie: resolved (fixed in 3.4-3)
No detection rules found.
Bugzilla
CVE-2014-0242 mod_wsgi: information leak [epel-5]
bugzilla·2014-05-28·CVSS 7.5
CVE-2014-0242 [HIGH] CVE-2014-0242 mod_wsgi: information leak [epel-5]
CVE-2014-0242 mod_wsgi: information leak [epel-5]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, use the bodhi submission link noted
in the next comment(s). This will include the bug IDs of this tracking
bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
epel-5 tracking bug for mod_wsgi: see blocks bug list for
Bugzilla
CVE-2014-0242 python26-mod_wsgi: mod_wsgi: information leak [epel-5]
bugzilla·2014-05-28·CVSS 7.5
CVE-2014-0242 [HIGH] CVE-2014-0242 python26-mod_wsgi: mod_wsgi: information leak [epel-5]
CVE-2014-0242 python26-mod_wsgi: mod_wsgi: information leak [epel-5]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, use the bodhi submission link noted
in the next comment(s). This will include the bug IDs of this tracking
bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
epel-5 tracking bug for python26-mod_w
Bugzilla
CVE-2014-0242 mod_wsgi: information leak
bugzilla·2014-05-28·CVSS 7.5
CVE-2014-0242 [HIGH] CVE-2014-0242 mod_wsgi: information leak
CVE-2014-0242 mod_wsgi: information leak
mod_wsgi allows you to host Python applications on the Apache HTTP Server. It was found that a remote attacker could leak portions of a mod_wsgi application's memory via the Content-Type header.
This issue has been fixed in mod_wsgi version 3.4.
References:
http://blog.dscpl.com.au/2014/05/security-release-for-modwsgi-version-35.html
https://github.com/GrahamDumpleton/mod_wsgi/commit/b0a149c1f5e569932325972e2e20176a42e43517
Acknowledgements:
Red Hat would like to thank Graham Dumpleton for reporting of this issue. Upstream acknowledges Buck Golemon as the original issue reporter.
Discussion:
Created python26-mod_wsgi tracking bugs for this issue:
Affects: epel-5 [bug 1101875]
---
Created mod_wsgi tracking bugs for this issue:
Affects: epe
http://blog.dscpl.com.au/2014/05/security-release-for-modwsgi-version-35.htmlhttp://modwsgi.readthedocs.org/en/latest/release-notes/version-3.4.htmlhttp://www.openwall.com/lists/oss-security/2014/05/21/1http://www.securityfocus.com/bid/67534http://blog.dscpl.com.au/2014/05/security-release-for-modwsgi-version-35.htmlhttp://modwsgi.readthedocs.org/en/latest/release-notes/version-3.4.htmlhttp://www.openwall.com/lists/oss-security/2014/05/21/1http://www.securityfocus.com/bid/67534
2019-12-09
Published