IBM Support

PM09447: IBM HTTP Server - CVE-2010-0425 mod_isapi vulnerability

Download


Abstract

Repeated malicious requests to URLs configured to be handled by mod_isapi can cause errors, crashes, or remote execution.

Download Description

PM09447 resolves the following problem:

ERROR DESCRIPTION:
CVE-2010-0425 mod_isapi vulnerability

LOCAL FIX:
N/A

PROBLEM SUMMARY

USERS AFFECTED:
IBM HTTP Server 6.0 or 6.1 users on the Windows operating system that have uncommented the LoadModule directive for the 'mod_isapi' module and have configured it as a handler.

mod_isapi is an esoteric module that allows Apache HTTP Server to call DLLs designed for use with Microsoft IIS. It is very rarely used with IBM HTTP Server and is not a part of 7.0 or later releases.

PROBLEM DESCRIPTION:
Repeated malicious requests to URLs configured to be handled by mod_isapi can cause errors, crashes, or remote execution.

RECOMMENDATION:
Apply this fix if the 'LoadModule' directive for 'mod_isapi' is enabled in httpd.conf (this module is disabled by default).

PROBLEM CONCLUSION:
The unloading of ISAPI DLL's in mid-request during error cases has been removed, which eliminates the chance for later phases of apache processing to call into the unloaded DLL. ISAPI DLL's are now only unloaded during the final cleanup of a request when no further callbacks are possible.

This fix is targeted for IBM HTTP Server fixpacks:
- 6.0.2.41
- 6.1.0.31

[{"PRLabel":"UpdateInstaller","PRLang":"US English","PRSize":"7250000","PRPlat":{"label":"Windows","code":"PF033"},"PRURL":"http://www.ibm.com/support/docview.wss?uid=swg21205991"}]
[{"INLabel":"Readme","INLang":"US English","INSize":"6349","INURL":"ftp://public.dhe.ibm.com/software/websphere/ihs/support/fixes/PM09447/readme.txt"}]
On
[{"DNLabel":"6.0 Windows","DNDate":"03/18/2010","DNLang":"US English","DNSize":"36596","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"http://www.ibm.com/support/fixcentral/quickorder?fixids=6.0.2.0-WS-WASIHS-WinX32-IFPM09447&source=dbluesearch&product=ibm%2FWebSphere%2FWebSphere+Application+Server","DNURL_FTP":"ftp://public.dhe.ibm.com/software/websphere/ihs/support/fixes/PM09447/6.0.2.0-WS-WASIHS-WinX32-IFPM09447.pak","DDURL":"http://public.dhe.ibm.com:7618;sw_websphere;ihs/support/fixes/PM09447/6.0.2.0-WS-WASIHS-WinX32-IFPM09447.pak"},{"DNLabel":"6.1 Windows","DNDate":"03/18/2010","DNLang":"US English","DNSize":"37576","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"http://www.ibm.com/support/fixcentral/quickorder?fixids=6.1.0.0-WS-WASIHS-WinX32-IFPM09447&source=dbluesearch&product=ibm%2FWebSphere%2FWebSphere+Application+Server","DNURL_FTP":"ftp://public.dhe.ibm.com/software/websphere/ihs/support/fixes/PM09447/6.1.0.0-WS-WASIHS-WinX32-IFPM09447.pak","DDURL":"http://public.dhe.ibm.com:7618;sw_websphere;ihs/support/fixes/PM09447/6.1.0.0-WS-WASIHS-WinX32-IFPM09447.pak"}]
[{"Product":{"code":"SSEQTJ","label":"IBM HTTP Server"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Base Server","Platform":[{"code":"PF033","label":"Windows"}],"Version":"6.1.0.9;6.1.0.7;6.1.0.5;6.1.0.3;6.1.0.29;6.1.0.27;6.1.0.25;6.1.0.23;6.1.0.21;6.1.0.2;6.1.0.19;6.1.0.17;6.1.0.15;6.1.0.13;6.1.0.11;6.1;6.0.2.9;6.0.2.7;6.0.2.39;6.0.2.37;6.0.2.35;6.0.2.33;6.0.2.31;6.0.2.3;6.0.2.29;6.0.2.27;6.0.2.25;6.0.2.23;6.0.2.21;6.0.2.19;6.0.2.15;6.0.2.13;6.0.2.11;6.0.2.1;6.0.2","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
07 September 2022

UID

swg24026208