CVE-2011-4973
First published: Wed Oct 09 2013(Updated: )
A flaw was reported in the way mod_nss handled FakeBasicAuth NSSOption. Unlike mod_ssl, mod_nss only used CommonName from a client certificate's subject, rather than the whole subject DN. This made safety check inherited from mod_ssl that ensured client can not submit username and password generated by FakeBasicAuth via Authorization header without actually providing valid client certificate. Further details are in the Jared Jennings' post to the mod_nss mailing list: <a href="https://www.redhat.com/archives/mod_nss-list/2011-May/msg00001.html">https://www.redhat.com/archives/mod_nss-list/2011-May/msg00001.html</a> Problem was corrected in the following upstream git commit: <a href="https://git.fedorahosted.org/cgit/mod_nss.git/commit/?id=a6c3370491ae1d3bc552e8de9353c82f73e510e3">https://git.fedorahosted.org/cgit/mod_nss.git/commit/?id=a6c3370491ae1d3bc552e8de9353c82f73e510e3</a> This fix is not yet included in any released mod_nss version. The last released version to date is 1.0.8 from Jul 2008. This problem was already corrected in Red Hat Enterprise Linux 5 and 6 mod_nss packages via the following errata: <a href="https://rhn.redhat.com/errata/RHBA-2011-1656.html">https://rhn.redhat.com/errata/RHBA-2011-1656.html</a> <a href="https://rhn.redhat.com/errata/RHBA-2013-0009.html">https://rhn.redhat.com/errata/RHBA-2013-0009.html</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mod Nss Project Mod Nss | =1.0.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.redhat.com/archives/mod_nss-list/2011-May/msg00001.html
- https://bugzilla.redhat.com/show_bug.cgi?id=1017197
- https://git.fedorahosted.org/cgit/mod_nss.git/commit/?id=a6c3370491ae1d3bc552e8de9353c82f73e510e3
- https://rhn.redhat.com/errata/RHBA-2011-1656.html
- https://rhn.redhat.com/errata/RHBA-2013-0009.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1017675
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/tags
- agent/event
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-4973
- vendor/mod nss project
- canonical/mod nss project mod nss
- version/mod nss project mod nss/1.0.8