8.1
CWE
601
Advisory Published
CVE Published
Updated

CVE-2016-5385

First published: Wed Jul 15 2015(Updated: )

Dominic Scheirlinck of VendHQ reports: Many software projects and vendors have implemented support for the “Proxy” request header in their respective CGI implementations and languages by creating the “HTTP_PROXY” environmental variable based on the header value. When this variable is used (in many cases automatically by various HTTP client libraries) any outgoing requests generated in turn from the attackers original request can be redirected to an attacker controlled proxy. This allows attackers to view potentially sensitive information, reply with malformed data, or to hold connections open causing a potential denial of service. The PHP web framework contains will automatically populate the HTTP_PROXY environmental variable with a user supplied "Proxy" header.

Credit: secalert@redhat.com secalert@redhat.com

Affected SoftwareAffected VersionHow to fix
composer/amphp/artax>=2<2.0.4>0.7.1<1.0.4
composer/bugsnag/bugsnag-laravel>=2<2.0.2
2.0.2
composer/drupal/core>=8.0<8.1.0>=8.1.0<8.1.7
composer/guzzlehttp/guzzle>=6<6.2.1>=4.0.0-rc2<4.2.4>=5<5.3.1
6.2.1
composer/drupal/drupal>=8.0<8.1.0>=8.1.0<8.1.7
composer/padraic/humbug_get_contents<1.1.2
1.1.2
composer/typo3/cms>=8.0.0<8.1.0>=8.1.0<8.2.0>=8.2.0<8.2.1
Oracle Communications User Data Repository=10.0.0
Oracle Communications User Data Repository=10.0.1
Oracle Communications User Data Repository=12.0.0
Oracle Enterprise Manager Ops Center=12.2.2
Oracle Enterprise Manager Ops Center=12.3.2
Oracle Linux=6
Oracle Linux=7
Fedoraproject Fedora=23
Fedoraproject Fedora=24
Hp Storeever Msl6480 Tape Library Firmware<=5.09
Hp Storeever Msl6480 Tape Library
HP System Management Homepage<=7.5.5.0
PHP PHP>=5.5.0<5.5.38
PHP PHP>=5.6.0<5.6.24
PHP PHP>=7.0.0<=7.0.8
Redhat Enterprise Linux Desktop=6.0
Redhat Enterprise Linux Server=6.0
Redhat Enterprise Linux Workstation=6.0
Debian Debian Linux=8.0
openSUSE Leap=42.1
Drupal Drupal>=8.0.0<8.1.7
PHP PHP<7.0.9
7.0.9
composer/typo3/cms>=8.0.0<8.2.1
8.2.1
composer/drupal/drupal>=8.0<8.1.7
8.1.7
composer/bugsnag/bugsnag-laravel>=2<2.0.2
2.0.2
composer/amphp/artax>0.7.1<1.0.4
1.0.4
composer/padraic/humbug_get_contents<1.1.2
1.1.2
composer/amphp/artax>=2.0.0<2.0.4
2.0.4
composer/drupal/core>=8.0<8.1.7
8.1.7
composer/guzzlehttp/guzzle>=5<5.3.1
5.3.1
composer/guzzlehttp/guzzle>=4.0.0-rc2<4.2.4
4.2.4
composer/guzzlehttp/guzzle>=6<6.2.1
6.2.1
All of
Hp Storeever Msl6480 Tape Library Firmware<=5.09
Hp Storeever Msl6480 Tape Library

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Reference Links

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203