Title: Stronghold Secure Web Server Information Disclosure Vulnerability
Severity: MODERATE
Description:
Redhat Stronghold Secure Web Server is a web server based on the Apache source and designed to be robust and secure.
The default installation of Stronghold includes the mod_status apache module, used to report information on the status of the web server. The information disclosed by this module is sensitive, and includes the contents of the httpd.conf file. A malicious user viewing this information may be able to use it to stage further attacks on the server. The urls used to access this service are:
http://target/stronghold-info
http://target/stronghold-status
Although this module is by default compiled into apache, it is not enabled in a default installation. The vulnerability exists when the module is enabled with the ExtendedStatus directive, and access from external domains has not yet been disabled in the httpd.conf file.
Detailed instructions on how to guard against external access are available in the current Stronghold Administration Guide.
Affected Products:
- RedHat Stronghold 2.3.0
- RedHat Stronghold 2.4.0
- RedHat Stronghold 3.0.0
References:
- RedHat: Stronghold Secure Web Server
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
