Apache – CVE-2018-17199

Description

Kayran has detected that the Version of Apache HTTP Server being used is vulnerable to Session Fixation (CWE-384).
The Authenticating of a user, or establishing a new user session without invalidating any existing session identifiers. In short, the mod_session_cookie does not respect expiry time.
Also known as CVE-2018-17199.

In the Version of Apache HTTP server being used, mod_session checks the session expiry time before decoding the session itself.
This will lead to ignoring the session expiry time for mod_session_cookie sessions since the expiry time is being loaded in the time that the session is decoded.
That, will allow attackers to steal authenticated sessions from users.

There’s a chance that this vulnerability will allow attackers to modify system files and information.

Recommendation

To fix CVE-2018-17199, upgrade the version of Apache HTTP Server being used to 2.4.38 or higher.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17199

https://cwe.mitre.org/data/definitions/384.html

< Return to all Vulnerabilities

What is a CWE ?

Similar to the article written on CVEs, in this article we will answer the questions :What is CWE ? and, what is the difference between

Read More »

Using VPN

What is a VPN? Why should someone be using VPN? Which Problems does is solve? and what is the advantages and disadvantages of it? Let’s

Read More »

Blue Team

We’ve talked about The Red Team before, but what about The Blue Team? How is this group different from the red one? Why would we

Read More »

HAR Files

In this article, I’ll talk and explain about HAR Files, so if you don’t know what they are, or, what do we use them for,

Read More »