Thursday, 21 July 2016 06:28

HTTPOXY VULNERABILITY

Written by
Rate this item
(0 votes)

if you are running your website on a VPS, then you need to be aware of the HTTPOXY vulnerability, and take immediate steps to prevent it from attacking your server.

What is the HTTPOXY Vulnerability?

httpoxy is a set of vulnerabilities that affect application code running in CGI, or CGI-like environments. It comes down to a simple namespace conflict: RFC 3875 (CGI) puts the HTTP Proxy header from a request into the environment variables as HTTP_PROXY HTTP_PROXY is a popular environment variable used to configure an outgoing proxy This leads to a remotely exploitable vulnerability. If you’re running PHP or CGI, you should block the Proxy header now.

What can happen if my web server is vulnerable?

If a vulnerable HTTP client makes an outgoing HTTP connection, while running in a server-side CGI application, an attacker may be able to:

  • Proxy the outgoing HTTP requests made by the web application
  • Direct the server to open outgoing connections to an address and port of their choosing
  • Tie up server resources by forcing the vulnerable software to use a malicious proxy

httpoxy is extremely easy to exploit in basic form. Luckily, if you  are affected, easy mitigations are available.

 

 

 

Read 213 times Last modified on Thursday, 21 July 2016 07:29

Leave a comment

Make sure you enter all the required information, indicated by an asterisk (*). HTML code is not allowed.

×
Help Us
Get Better
Invalid Name Invalid Email Address Invalid Mobile Invalid characters in Messages
Please help us improve, leave some feedback on our site, products, or products you'd need that we don't provide. We promise to respond to all feedback.