CVE-2011-2767: Code Injection
First published: Sun Aug 26 2018(Updated: )
A flaw was found in mod_perl 2.0 through 2.0.10 which allows attackers to execute arbitrary Perl code by placing it in a user-owned .htaccess file, because (contrary to the documentation) there is no configuration option that permits Perl code for the administrator's control of HTTP request processing without also permitting unprivileged users to run Perl code in the context of the user account that runs Apache HTTP Server processes. References: <a href="https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644169">https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644169</a>
Credit: security@debian.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/libapache2-mod-perl2 | 2.0.11-4 2.0.12-1 2.0.13-1 | |
| Apache mod_perl | >=2.0.0<=2.0.10 | |
| Debian | =8.0 | |
| Red Hat Enterprise Linux | =6.0 | |
| Red Hat Enterprise Linux | =6.7 | |
| Red Hat Enterprise Linux | =7.0 | |
| Red Hat Enterprise Linux | =7.3 | |
| Red Hat Enterprise Linux | =7.4 | |
| Red Hat Enterprise Linux | =7.5 | |
| Red Hat Enterprise Linux | =7.6 | |
| Red Hat Enterprise Linux Desktop | =6.0 | |
| Red Hat Enterprise Linux Server | =6.0 | |
| Red Hat Enterprise Linux Workstation | =6.0 | |
| Ubuntu Linux | =12.04 | |
| Ubuntu Linux | =14.04 | |
| Ubuntu Linux | =16.04 | |
| Ubuntu Linux | =18.04 | |
| Ubuntu Linux | =18.10 | |
| Ubuntu | =12.04 | |
| Ubuntu | =14.04 | |
| Ubuntu | =16.04 | |
| Ubuntu | =18.04 | |
| Ubuntu | =18.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://mail-archives.apache.org/mod_mbox/perl-modperl/201110.mbox/raw/%3C20111004084343.GA21290%40ktnx.net%3E
- https://bugs.debian.org/644169
- https://lists.debian.org/debian-lts-announce/2018/09/msg00018.html
- https://access.redhat.com/errata/RHSA-2018:2737
- https://access.redhat.com/errata/RHSA-2018:2826
- https://access.redhat.com/errata/RHSA-2018:2825
- http://www.securityfocus.com/bid/105195
- https://usn.ubuntu.com/3825-1/
- https://usn.ubuntu.com/3825-2/
- https://lists.apache.org/thread.html/c8ebe8aad147a3ad2e7b0e8b2da45263171ab5d0fc7f8c100feaa94d@%3Cmodperl-cvs.perl.apache.org%3E
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00063.html
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00065.html
- https://launchpad.net/bugs/cve/CVE-2011-2767
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644169
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1623268
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1623267
- http://localhost/
- http://perl.apache.org/docs/2.0/user/config/config.html#mod_perl_Directives_Argument_Types_and_Allowed_Location
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644169#19
- https://bugzilla.redhat.com/show_bug.cgi?id=1623265
- https://lists.apache.org/thread.html/c8ebe8aad147a3ad2e7b0e8b2da45263171ab5d0fc7f8c100feaa94d%40%3Cmodperl-cvs.perl.apache.org%3E
- https://rt.cpan.org/Public/Bug/Display.html?id=126984
- https://bugzilla.redhat.com/show_bug.cgi?id=1623265#c3
- https://security-tracker.debian.org/tracker/CVE-2011-2767
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2767
- https://nvd.nist.gov/vuln/detail/CVE-2011-2767
- https://ubuntu.com/security/CVE-2011-2767
Frequently Asked Questions
What is the severity of CVE-2011-2767?
CVE-2011-2767 is classified as a critical vulnerability due to the potential for arbitrary code execution.
How do I fix CVE-2011-2767?
To mitigate CVE-2011-2767, upgrade to mod_perl version 2.0.11-4 or later.
What versions of mod_perl are affected by CVE-2011-2767?
CVE-2011-2767 affects mod_perl versions 2.0 through 2.0.10.
Can CVE-2011-2767 be exploited by unauthorized users?
Yes, unauthorized users can exploit CVE-2011-2767 by placing malicious Perl code in .htaccess files.
Is there a workaround for CVE-2011-2767 until I can update?
Disabling the use of .htaccess files or restricting their access can serve as a temporary workaround for CVE-2011-2767.
- agent/type
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-2767
- agent/severity
- agent/weakness
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/first-publish-date
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/author
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-historical
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- package-manager/debian
- vendor/apache
- canonical/apache mod_perl
- version/apache mod_perl/2.0.0
- version/apache mod_perl/2.0.10
- vendor/debian
- canonical/debian
- version/debian/8.0
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/6.0
- version/red hat enterprise linux/6.7
- version/red hat enterprise linux/7.0
- version/red hat enterprise linux/7.3
- version/red hat enterprise linux/7.4
- version/red hat enterprise linux/7.5
- version/red hat enterprise linux/7.6
- canonical/red hat enterprise linux desktop
- version/red hat enterprise linux desktop/6.0
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/6.0
- canonical/red hat enterprise linux workstation
- version/red hat enterprise linux workstation/6.0
- vendor/canonical
- canonical/ubuntu linux
- version/ubuntu linux/12.04
- version/ubuntu linux/14.04
- version/ubuntu linux/16.04
- version/ubuntu linux/18.04
- version/ubuntu linux/18.10
- canonical/ubuntu
- version/ubuntu/12.04
- version/ubuntu/14.04
- version/ubuntu/16.04
- version/ubuntu/18.04
- version/ubuntu/18.10