SB2023022130 - Multiple vulnerabilities in The IBM FlashSystem 840
Published: February 21, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Input validation error (CVE-ID: CVE-2013-4286)
The vulnerability allows a remote attacker to perform a request-smuggling attack.
The vulnerability exists due to HTTP connector or AJP connector is used, does not properly handle certain inconsistent HTTP request headers. A remote attacker can trigger incorrect identification of a request's length and conduct request-smuggling attacks via multiple Content-Length headers or a Content-Length header and a "Transfer-Encoding: chunked" header.
This vulnerability exists because of an incomplete fix for CVE-2005-2090.
2) Input validation error (CVE-ID: CVE-2013-4322)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to Apache Tomcat processes chunked transfer coding without properly handling a large total amount of chunked data or whitespace characters in an HTTP header value within a trailer field. A remote attacker can cause a denial of service by streaming data.
3) Input validation error (CVE-ID: CVE-2014-0033)
The vulnerability allows a remote attacker to perform a session fixation attack
The vulnerability exists due to org/apache/catalina/connector/CoyoteAdapter.java in Apache Tomcat does not consider the disableURLRewriting setting when handling a session ID in a URL. A remote attacker can pass specially crafted URL and perform a session fixation attack.
Remediation
Install update from vendor's website.