Apache Chunked-Encoding Vulnerability Scanner
*********************************************

June 23, 2002

Apache Chunked-Encoding Vulnerability Scanner for Windows.

The Remote Apache Vulnerability
*******************************

A remote vulnerability has been discovered in the Apache HTTP server, versions up to 1.3.24 and 2.0 through 2.0.36 for both Windows and *nix. The hole is in routines which deal with invalid requests encoded using chunked encoding, which is enabled by default. A maliciously crafted request could lead to denial of service or possibly a remote exploit. Apache's official advisory has more information.

Official Advisory -
http://httpd.apache.org/info/security_bulletin_20020617.txt

Source Distribution Page -
http://www.apache.org/dist/httpd/

More on the Apache Vulnerability
********************************

CERT has issued advisory CA-2002-17 covering the remote DoS and code execution security hole in Apache web servers, which run 56% of the Internet's web sites according to the latest Netcraft survey.

advisory CA-2002-17 -
http://www.cert.org/advisories/CA-2002-17.html

Netcraft survey -
http://www.netcraft.com/survey/

New Apache Versions
*******************

Versions 2.0.39 and 1.3.26 of the Apache web server have been released, both of which fix the remote vulnerability uncovered yesterday.

Here are the revelant links:

Binaries and Source -
http://www.apache.org/dist/httpd/

Version 1.3.x changelog -
http://www.apache.org/dist/httpd/CHANGES_1.3

Version 2.0.x changelog -
http://www.apache.org/dist/httpd/CHANGES_2.0

Exploit
*******

"Gobbles Security" group has published an exploit called apache-scalp on BugTraq that gets a remote shell on Apache 1.3.X. The hack only works on OpenBSD but expect more exploits for other platforms soon.

apache-scalp -
http://lists.insecure.org/bugtraq/2002/Jun/0243.html

Disclaimer
**********

This utility is provided for educational purposes and protection.

The author is not responsible for any damages, direct or indirect,
caused by usage of this tool.

Apache Chunked-Encoding Vulnerability Scanner.
A software written by Felipe Moniz.

Greetings to Ryan and Hideaway.Net.

The tool is available for downloading at www.nstalker.com