Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-6311

Опубликовано: 03 июл. 2016
Источник: redhat
CVSS3: 5.3
CVSS2: 5
EPSS Низкий

Описание

Get requests in JBoss Enterprise Application Platform (EAP) 7 disclose internal IP addresses to remote attackers.

It was found that when issuing a GET request which results in a 302 redirect, and when the request header 'Host' field was not set, the response header field 'Location' contains the internal IP address of the server. An attacker could use this disclose information which they are not authorized to access.

Меры по смягчению последствий

You can add a filter in the JBoss CLI that sets the host header to the 'myvirtualhost.com' if the host header is not present. eg: /subsystem=undertow/configuration=filter/expression-filter=hostname:add(expression="header(header=Host, value=myvirtualhost.com)") /subsystem=undertow/server=default-server/host=default-host/filter-ref=hostname:add(predicate="not exists(%{i,Host})")

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat JBoss Fuse 6hawtioNot affected
Red Hat JBoss EAP 7FixedRHSA-2017:345613.12.2017
Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6eap7-activemq-artemisFixedRHSA-2017:345413.12.2017
Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6eap7-antlrFixedRHSA-2017:345413.12.2017
Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6eap7-apache-commons-beanutilsFixedRHSA-2017:345413.12.2017
Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6eap7-apache-commons-cliFixedRHSA-2017:345413.12.2017
Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6eap7-apache-commons-ioFixedRHSA-2017:345413.12.2017
Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6eap7-apache-cxfFixedRHSA-2017:345413.12.2017
Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6eap7-apache-cxf-xjc-utilsFixedRHSA-2017:345413.12.2017
Red Hat JBoss Enterprise Application Platform 7.1 for RHEL 6eap7-apache-mime4jFixedRHSA-2017:345413.12.2017

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-200
https://bugzilla.redhat.com/show_bug.cgi?id=1362735EAP7: Internal IP address disclosed on redirect when request header Host field is not set

EPSS

Процентиль: 72%
0.00725
Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2016-6311

CVSS3: 5.3
nvd
больше 8 лет назад

Get requests in JBoss Enterprise Application Platform (EAP) 7 disclose internal IP addresses to remote attackers.

github логотип

GHSA-p2j3-7ppx-vcp7

CVSS3: 5.3
github
больше 3 лет назад

Get requests in JBoss Enterprise Application Platform (EAP) 7 disclose internal IP addresses to remote attackers.

EPSS

Процентиль: 72%
0.00725
Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2