CVE-2016-5387

high-risk
Published 2016-07-19

The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an "httpoxy" issue. NOTE: the vendor states "This mitigation has been assigned the identifier CVE-2016-5387"; in other words, this is not a CVE ID for a vulnerability.

Do I need to act?

!
60.3% chance of exploitation in next 30 days
EPSS score — higher than 40% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.1/10 High
NETWORK / HIGH complexity

Affected Products (20)

Affected Vendors

Canonical Hp Redhat Opensuse Fedoraproject Apache Oracle Debian

References (108)

Mailing List http://lists.opensuse.org/opensuse-updates/2016-07/msg00059.html
Broken Link http://rhn.redhat.com/errata/RHSA-2016-1624.html
Broken Link http://rhn.redhat.com/errata/RHSA-2016-1625.html
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-1648.html
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-1649.html
Broken Link http://rhn.redhat.com/errata/RHSA-2016-1650.html
Third Party Advisory http://www.debian.org/security/2016/dsa-3623
Third Party Advisory http://www.kb.cert.org/vuls/id/797896
Patch http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
Patch http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
Third Party Advisory http://www.oracle.com/technetwork/topics/security/bulletinoct2016-3090566.html
Third Party Advisory http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.h...
Third Party Advisory http://www.securityfocus.com/bid/91816
Broken Link http://www.securitytracker.com/id/1036330
Third Party Advisory http://www.ubuntu.com/usn/USN-3038-1
Third Party Advisory https://access.redhat.com/errata/RHSA-2016:1420
Third Party Advisory https://access.redhat.com/errata/RHSA-2016:1421
Third Party Advisory https://access.redhat.com/errata/RHSA-2016:1422
Third Party Advisory https://access.redhat.com/errata/RHSA-2016:1635
Third Party Advisory https://access.redhat.com/errata/RHSA-2016:1636
and 88 more references
68
/ 100
high-risk
Severity 24/34 · High
Exploitability 19/34 · Moderate
Exposure 25/34 · High