Sun Java System Server Products HTTP Request Smuggling - Secunia Advisories - Vulnerability Intelligence

Home > Vulnerability Intelligence > Secunia Advisories > Sun Java System Server Products HTTP Request Smuggling

Secunia Advisories

Advisories

Advisories by Product

Business Solutions Restricted

Partner Solutions Restricted

About

Sun Java System Server Products HTTP Request Smuggling
Secunia Advisory:	SA23186	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2006-12-04
Last Update:	2008-05-16
Popularity:	8,564 views

Critical:	Less critical
Impact:	Security Bypass Cross Site Scripting Manipulation of data
Where:	From remote
Solution Status:	Vendor Patch

Software:	Sun Java System Application Server (Sun ONE) 7.x Sun Java System Application Server 8.x Sun Java System Web Proxy Server 3.x Sun Java System Web Proxy Server 4.x Sun Java System Web Server (Sun ONE/iPlanet) 6.x

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2006-6276

Description: Sun has acknowledged a vulnerability in various Sun Java System Server products, which can be exploited by malicious people to conduct HTTP request smuggling attacks. The vulnerability is caused due to an unspecified error within the handling of HTTP requests when using Sun Java System Proxy Server in conjunction with the Sun Java System Web Server or the Sun Java System Application Server. Successful exploitation allows poisoning of the web proxy cache, bypass of certain web application firewall protections, or cross-site scripting attacks. Solution: Apply service packs and patches. -- SPARC Platform -- * Sun Java System Proxy Server 3.6 Service Pack 8 or later * Sun Java System Proxy Server 4.0 Service Pack 1 or later * Sun Java System Web Server 6.0 Service Pack 10 or later * Sun Java System Web Server 6.1 2005Q1 Service Pack 5 or later * Sun ONE Application Server 7 Update 8 or later * Sun Java System Application Server 7 2004Q2 Update 4 or later * Sun Java System Application Server Enterprise Edition 8.1 2005 Q1 with (file-based) patch 119169-02 or (SVR4) patch 119166-09 or later * Sun Java System Application Server Platform Edition 8.1 2005 Q1 with (file-based) patch 119173-01 or later -- x86 Platform -- * Sun Java System Proxy Server 4.0 with Service Pack 1 or later * Sun Java System Web Server 6.1 2005Q1 with Service Pack 5 or later * Sun ONE Application Server 7 with Update 8 or later * Sun Java System Application Server 7 2004Q2 with Update 4 or later * Sun Java System Application Server Enterprise Edition 8.1 2005 Q1 with (file-based) patch 119170-02 or (SVR4) patch 119167-09 or later * Sun Java System Application Server Platform Edition 8.1 2005 Q1 with (file-based) patch 119174-01 or later -- Linux Platform -- * Sun Java System Proxy Server 4.0 with Service Pack 1 or later * Sun Java System Web Server 6.0 with Service Pack 10 or later * Sun Java System Web Server 6.1 2005Q1 with Service Pack 5 or later * Sun ONE Application Server 7 with Update 8 or later * Sun Java System Application Server 7 2004Q2 with Update 4 or later * Sun Java System Application Server Enterprise Edition 8.1 2005 Q1 with (file-based) patch 119171-02 or (Pkg) patch 119168-09 or later * Sun Java System Application Server Platform Edition 8.1 2005 Q1 with (file-based) patch 119175-01 or later -- AIX Platform -- * Sun Java System Proxy Server 3.6 with Service Pack 8 or later * Sun Java System Web Server 6.0 with Service Pack 10 or later * Sun Java System Web Server 6.1 2005Q1 with Service Pack 5 or later -- HP-UX Platform -- * Sun Java System Proxy Server 3.6 with Service Pack 8 or later * Sun Java System Web Server 6.0 with Service Pack 10 or later * Sun Java System Web Server 6.1 2005Q1 with Service Pack 5 or later * Sun Java System Application Server Enterprise Edition 8.1 2005 Q1 with (native) patch 121514-01 or later -- Windows Platform -- * Sun Java System Proxy Server 3.6 with Service Pack 8 or later * Sun Java System Proxy Server 4.0 with Service Pack 1 or later * Sun Java System Web Server 6.0 with Service Pack 10 or later * Sun Java System Web Server 6.1 2005Q1 with Service Pack 5 or later * Sun ONE Application Server 7 with Update 8 or later * Sun Java System Application Server 7 2004Q2 with Update 4 or later * Sun Java System Application Server Enterprise Edition 8.1 2005 Q1 with (file based) patch 119172-07 or (native) patch 121528-01 or later * Sun Java System Application Server Platform Edition 8.1 2005 Q1 with (file based) patch 119176-01 or later -- -- Sun Java System Proxy Server 3.6 Service Pack 8 or later is available at: http://www.sun.com/download/products.xml?id=42fa5c49 Sun Java System Proxy Server 4.0 Service Pack 1 or later is available at: http://www.sun.com/download/products.xml?id=4384b5dd Sun Java System Web Server 6.0 Service Pack 10 or later is available at: http://www.sun.com/download/products.xml?id=43a84f89 Sun Java System Web Server 6.1 2005Q1 Service Pack 5 or later is available at: http://www.sun.com/download/products.xml?id=434aec1d http://www.sun.com/download/products.xml?id=43c43041 (International Edition) Sun ONE Application Server 7 Update 8 or later is available at: http://www.sun.com/download/products.xml?id=438cfb75 (Platform Edition) http://www.sun.com/download/products.xml?id=438cf33d (Standard Edition) Sun Java System Application Server 7 2004Q2 Update 4 or later is available at: http://www.sun.com/download/products.xml?id=4331ff42 (Standard Edition) http://javashoplm.sun.com/ECom/docs/W...Q2U4-EE-OTH-G-ES (Enterprise Edition) Provided and/or discovered by: Reported by the vendor. Changelog: 2006-12-08: Added CVE reference. 2007-02-27: Updated "Solution" section to include fixes for additional affected versions in the x86, Linux, AIX, HP-UX, and Windows platforms. 2008-05-16: Updated link in "Original Advisory" section. Original Advisory: http://sunsolve.sun.com/search/document.do?assetkey=1-66-200098-1

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

8th Jan, 2009

New advisories:	24
New vulnerabilities:	99
Updated advisories:	26

Moderately // 354 views

Drupal Project Module File Upload and Cross-Site Scripting

Less // 354 views

SmbFTPD Long Command Processing Vulnerability

Less // 388 views

Drupal Project Issue Tracking Module Multiple Vulnerabilities

Less // 349 views

PHP-Fusion Members CV Module "sortby" SQL Injection Vulnerability

Moderately // 386 views

Lasso OpenSSL "DSA_verify()" Spoofing Vulnerability

Moderately // 327 views

Xdg-utils mailcap Command Execution Security Issue

Less // 368 views

FreeBSD update for lukemftpd

Less // 349 views

tnftpd Long Command Processing Vulnerability

Moderately // 482 views

Cisco Global Site Selector DNS Request Denial of Service

Less // 426 views

NTP OpenSSL "EVP_VerifyFinal()" Spoofing Vulnerability

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.