Vigil@nce: Apache httpd, denial of service of mod_ssl via compression
July 2008 by Vigil@nce
A remote attacker can use a compression algorithm in order to
create a denial of service in the mod_ssl module of httpd.
– Gravity: 3/4
– Consequences: denial of service of service
– Provenance: internet client
– Means of attack: 1 attack
– Ability of attacker: technician (2/4)
– Confidence: confirmed by the editor (5/5)
– Diffusion of the vulnerable configuration: high (3/3)
– Creation date: 24/07/2008
– Identifier: VIGILANCE-VUL-7969
IMPACTED PRODUCTS
Apache httpd [confidential versions]
DESCRIPTION
The mod_ssl module is incorporated in Apache httpd to encrypt data
in SSL tunnels.
The modules/ssl/mod_ssl.c file uses the CRYPTO_cleanup_all_ex_data()
function. However in OpenSSL versions superior to 0.9.8f, using
this function does not free the COMP_CTX structures, which creates
a memory leak.
A remote attacker can therefore use a compression algorithm in
order to create a denial of service in the mod_ssl module of httpd.
CHARACTERISTICS
– Identifiers: 44975, CVE-2008-1678, VIGILANCE-VUL-7969
– Url: https://vigilance.aql.fr/tree/1/7969