CVE-2016-6286 - OpenCVE

The "spiffy-cgi-handlers" egg would convert a nonexistent "Proxy" header to the HTTP_PROXY environment variable, which would allow attackers to direct CGI programs which use this environment variable to use an attacker-specified HTTP proxy server (also known as a "httpoxy" attack). This affects all versions of spiffy-cgi-handlers before 0.5.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Call-cc	Http-client

Configuration 1 [-]

cpe:2.3:a:call-cc:http-client:*:*:*:*:*:*:*:*

References

Link	Resource
http://lists.gnu.org/archive/html/chicken-announce/2016-07/msg00000.html	Mitigation Third Party Advisory
http://www.securityfocus.com/bid/92105	Third Party Advisory VDB Entry

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2017-01-10T15:00:00

Updated: 2017-01-10T12:57:01

Reserved: 2016-07-22T00:00:00

Link: CVE-2016-6286

JSON object: View

NVD Information

Status : Analyzed

Published: 2017-01-10T15:59:00.313

Modified: 2017-01-11T02:18:40.200

Link: CVE-2016-6286

JSON object: View

Redhat Information

No data.

CWE

CWE-19

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-07-21T00:00:00", "descriptions": [{"lang": "en", "value": "The \"spiffy-cgi-handlers\" egg would convert a nonexistent \"Proxy\" header to the HTTP_PROXY environment variable, which would allow attackers to direct CGI programs which use this environment variable to use an attacker-specified HTTP proxy server (also known as a \"httpoxy\" attack). This affects all versions of spiffy-cgi-handlers before 0.5."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-01-10T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[chicken-announce] 20160721 [SECURITY] spiffy-cgi-handlers and http-client updated to prevent \"httpoxy\" attack", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://lists.gnu.org/archive/html/chicken-announce/2016-07/msg00000.html"}, {"name": "92105", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/92105"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2016-6286", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The \"spiffy-cgi-handlers\" egg would convert a nonexistent \"Proxy\" header to the HTTP_PROXY environment variable, which would allow attackers to direct CGI programs which use this environment variable to use an attacker-specified HTTP proxy server (also known as a \"httpoxy\" attack). This affects all versions of spiffy-cgi-handlers before 0.5."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[chicken-announce] 20160721 [SECURITY] spiffy-cgi-handlers and http-client updated to prevent \"httpoxy\" attack", "refsource": "MLIST", "url": "http://lists.gnu.org/archive/html/chicken-announce/2016-07/msg00000.html"}, {"name": "92105", "refsource": "BID", "url": "http://www.securityfocus.com/bid/92105"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2016-6286", "datePublished": "2017-01-10T15:00:00", "dateReserved": "2016-07-22T00:00:00", "dateUpdated": "2017-01-10T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:call-cc:http-client:*:*:*:*:*:*:*:*", "matchCriteriaId": "BE498842-21FA-4FEB-9FE7-3A88FAD4DFAB", "versionEndIncluding": "0.4.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The \"spiffy-cgi-handlers\" egg would convert a nonexistent \"Proxy\" header to the HTTP_PROXY environment variable, which would allow attackers to direct CGI programs which use this environment variable to use an attacker-specified HTTP proxy server (also known as a \"httpoxy\" attack). This affects all versions of spiffy-cgi-handlers before 0.5."}, {"lang": "es", "value": "El huevo \"spiffy-cgi-handlers\" convertir\u00eda una cabecera \"Proxy\" inexistente a la variable de entorno HTTP_PROXY, lo que podr\u00edan permitir a atacantes dirigir programas CGI que usan esta variable de entorno, para utilizar un servidor proxy HTTP especificado por el atacante (tambi\u00e9n conocido como ataque \"httpoxy\"). Esto afecta a todas las versiones de spiffy-cgi-handlers anteriores a 0.5."}], "id": "CVE-2016-6286", "lastModified": "2017-01-11T02:18:40.200", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-01-10T15:59:00.313", "references": [{"source": "cve@mitre.org", "tags": ["Mitigation", "Third Party Advisory"], "url": "http://lists.gnu.org/archive/html/chicken-announce/2016-07/msg00000.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/92105"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-19"}], "source": "nvd@nist.gov", "type": "Primary"}]}