Interstage HTTP Serverにおける3件のセキュリティ脆弱性(CVE-2008-2364/ CVE-2010-0425/ CVE-2010-0434) (2010年7月26日)
1. 脆弱性の説明
Interstage Application Server、Interstage Studio、Interstage Web Server において、下記のセキュリティに関する脆弱性を抱えていることが確認されました。- Interstage HTTP Serverのプロキシ機能において、サービス運用妨害(DoS)となる脆弱性の問題が確認されました。
本脆弱性問題は、CVE-2008-2364に該当します。 - Interstage HTTP ServerのISAPI機能において、サービス運用妨害(DoS)、および任意のコードが実行される脆弱性の問題が確認されました
本脆弱性問題は、CVE-2010-0425に該当します。 - Interstage HTTP Serverの応答処理において、情報漏えいの脆弱性の問題が確認されました。
本脆弱性問題は、CVE-2010-0434に該当します。
Interstageについては以下のページを参照してください。
http://www.fujitsu.com/jp/products/software/middleware/business-middleware/interstage/
富士通は、3.に示すセキュリティパッチを提供していますので、早急に適用する様にお願いします。
2. 脆弱性のもたらす脅威
- 第三者によって大量送信されたレスポンスによって、サービス運用妨害(DoS)となる可能性があります。
- リモートの攻撃者に細工されたリクエストを送信されることで、サービス運用妨害(DoS)や、Webサーバ上で任意のコードが実行される可能性があります
- リモートの攻撃者に細工されたリクエストを送信されることで、他のリクエストの情報を読み取られる可能性があります。
3. 該当システム・対策情報
3-1.該当システム
GP7000F, PRIMEPOWER, GP-S, PRIMERGY, GP5000, CELSIUS, FMVシリーズ, AT互換機, PRIMEQUEST, SPARC Enterprise
3-2.該当製品・対策Patch
注意)製品ごとに影響を受ける脆弱性が異なります。製品名の末尾の括弧内記載記号と以下の分類をご照合ください。
- [a]: CVE-2008-2364
- [b]: CVE-2010-0425
- [c]: CVE-2010-0434
・Interstage Application Server
・Interstage Studio
・Interstage Web Server
| 製品名 | 対象OS | パッケージ名 | Patch ID |
|---|---|---|---|
| Interstage Application Server Enterprise Edition V9.0.0 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T001003LP-03 |
| Interstage Application Server Standard-J Edition V9.0.0 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T001003LP-03 |
| Interstage Application Server Enterprise Edition V9.0.0B [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T001003LP-03 |
| Interstage Application Server Enterprise Edition V9.0.1 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T001003LP-03 |
| Interstage Application Server Standard-J Edition V9.0.1 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T001003LP-03 |
| Interstage Application Server Enterprise Edition V9.1.0 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T002176LP-02 |
| Interstage Application Server Standard-J Edition V9.1.0 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T002176LP-02 |
| Interstage Application Server Enterprise Edition V9.1.0B [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T002176LP-02 |
| Interstage Application Server Standard-J Edition V9.1.0B [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T002176LP-02 |
| Interstage Application Server Enterprise Edition V9.2.0 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T004338LP-01 |
| Interstage Application Server Standard-J Edition V9.2.0 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T004338LP-01 |
| Interstage Application Server Enterprise Edition V9.0.0 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T001044LP-03 |
| Interstage Application Server Standard-J Edition V9.0.0 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T001044LP-03 |
| Interstage Application Server Standard-J Edition V9.0.0B [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T001044LP-03 |
| Interstage Application Server Enterprise Edition V9.0.1 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T001044LP-03 |
| Interstage Application Server Standard-J Edition V9.0.1 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T001044LP-03 |
| Interstage Application Server Enterprise Edition V9.0.1B [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T001044LP-03 |
| Interstage Application Server Standard-J Edition V9.0.1B [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T001044LP-03 |
| Interstage Application Server Enterprise Edition V9.1.0 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T002177LP-02 |
| Interstage Application Server Standard-J Edition V9.1.0 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T002177LP-02 |
| Interstage Application Server Enterprise Edition V9.1.0B [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T002177LP-02 |
| Interstage Application Server Standard-J Edition V9.1.0B [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T002177LP-02 |
| Interstage Application Server Enterprise Edition V9.2.0 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T004339LP-01 |
| Interstage Application Server Standard-J Edition V9.2.0 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T004339LP-01 |
| Interstage Application Server Enterprise Edition V9.0.0 [a] | RHEL-AS4(IPF) | FJSVihs | T001002QP-03 |
| Interstage Application Server Standard-J Edition V9.0.0 [a] | RHEL-AS4(IPF) | FJSVihs | T001002QP-03 |
| Interstage Application Server Enterprise Edition V9.1.0 [a] | RHEL-AS4(IPF) | FJSVihs | T002178QP-02 |
| Interstage Application Server Standard-J Edition V9.1.0 [a] | RHEL-AS4(IPF) | FJSVihs | T002178QP-02 |
| Interstage Application Server Enterprise Edition V9.2.0 [a] | RHEL-AS4(IPF) | FJSVihs | T004340QP-01 |
| Interstage Application Server Standard-J Edition V9.2.0 [a] | RHEL-AS4(IPF) | FJSVihs | T004340QP-01 |
| Interstage Application Server Enterprise Edition V9.0.0 [a] | RHEL5(IPF) | FJSVihs | T001043QP-03 |
| Interstage Application Server Standard-J Edition V9.0.0 [a] | RHEL5(IPF) | FJSVihs | T001043QP-03 |
| Interstage Application Server Enterprise Edition V9.1.0 [a] | RHEL5(IPF) | FJSVihs | T002179QP-02 |
| Interstage Application Server Standard-J Edition V9.1.0 [a] | RHEL5(IPF) | FJSVihs | T002179QP-02 |
| Interstage Application Server Enterprise Edition V9.2.0 [a] | RHEL5(IPF) | FJSVihs | T004341QP-01 |
| Interstage Application Server Standard-J Edition V9.2.0 [a] | RHEL5(IPF) | FJSVihs | T004341QP-01 |
| Interstage Application Server Enterprise Edition V9.2.0 [a] | RHEL5(Intel64) | FJSVihs | T004342LP-01 |
| Interstage Application Server Standard-J Edition V9.2.0 [a] | RHEL5(Intel64) | FJSVihs | T004342LP-01 |
| Interstage Application Server Enterprise Edition V9.0.0 [a] | Solaris | FJSVihs | T001004SP-05 |
| Interstage Application Server Standard-J Edition V9.0.0 [a] | Solaris | FJSVihs | T001004SP-05 |
| Interstage Application Server Enterprise Edition V9.0.0B [a] | Solaris | FJSVihs | T001004SP-05 |
| Interstage Application Server Enterprise Edition V9.1.0 [a] | Solaris | FJSVihs | T002180SP-03 |
| Interstage Application Server Standard-J Edition V9.1.0 [a] | Solaris | FJSVihs | T002180SP-03 |
| Interstage Application Server Enterprise Edition V9.1.0A [a] | Solaris | FJSVihs | T002180SP-03 |
| Interstage Application Server Standard-J Edition V9.1.0A [a] | Solaris | FJSVihs | T002180SP-03 |
| Interstage Application Server Enterprise Edition V9.1.0B [a] | Solaris | FJSVihs | T002180SP-03 |
| Interstage Application Server Standard-J Edition V9.1.0B [a] | Solaris | FJSVihs | T002180SP-03 |
| Interstage Application Server Enterprise Edition V9.2.0 [a] | Solaris | FJSVihs | T004343SP-01 |
| Interstage Application Server Standard-J Edition V9.2.0 [a] | Solaris | FJSVihs | T004343SP-01 |
| Interstage Application Server Enterprise Edition V9.0.0 [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Application Server Standard-J Edition V9.0.0 [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Application Server Standard-J Edition V9.0.0B [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Application Server Enterprise Edition V9.1.0 [a,b,c] | Windows | F3FMihs | T002174WP-02 |
| Interstage Application Server Standard-J Edition V9.1.0 [a,b,c] | Windows | F3FMihs | T002174WP-02 |
| Interstage Application Server Enterprise Edition V9.1.0B [a,b,c] | Windows | F3FMihs | T002174WP-02 |
| Interstage Application Server Standard-J Edition V9.1.0B [a,b,c] | Windows | F3FMihs | T002174WP-02 |
| Interstage Application Server Enterprise Edition V9.2.0 [a,b,c] | Windows | F3FMihs | T004344WP-01 |
| Interstage Application Server Standard-J Edition V9.2.0 [a,b,c] | Windows | F3FMihs | T004344WP-01 |
| Interstage Application Server Enterprise Edition V9.2.0A [a,b,c] | Windows | F3FMihs | T004344WP-01 |
| Interstage Application Server Standard-J Edition V9.2.0A [a,b,c] | Windows | F3FMihs | T004344WP-01 |
| Interstage Application Server Enterprise Edition V9.0.0 [a,b,c] | Windows(IPF) | F3FMihs | T001005IP-03 |
| Interstage Application Server Standard-J Edition V9.0.0 [a,b,c] | Windows(IPF) | F3FMihs | T001005IP-03 |
| Interstage Application Server Enterprise Edition V9.1.0 [a,b,c] | Windows(IPF) | F3FMihs | T002175IP-02 |
| Interstage Application Server Standard-J Edition V9.1.0 [a,b,c] | Windows(IPF) | F3FMihs | T002175IP-02 |
| Interstage Application Server Enterprise Edition V9.2.0 [a,b,c] | Windows(IPF) | F3FMihs | T004345IP-01 |
| Interstage Application Server Standard-J Edition V9.2.0 [a,b,c] | Windows(IPF) | F3FMihs | T004345IP-01 |
| Interstage Application Server Enterprise Edition V9.2.0 [a,b,c] | Windows(EM64T) | F3FMihs | T004346XP-01 |
| Interstage Application Server Standard-J Edition V9.2.0 [a,b,c] | Windows(EM64T) | F3FMihs | T004346XP-01 |
| 製品名 | 対象OS | パッケージ名 | Patch ID |
|---|---|---|---|
| Interstage Studio Enterprise Edition V9.0.0 [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Studio Standard-J Edition V9.0.0 [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Studio with UML Modeling Tool V9.0.0 [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Studio Enterprise Edition V9.0.0A [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Studio Standard-J Edition V9.0.0A [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Studio Enterprise Edition V9.0.1 [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Studio Standard-J Edition V9.0.1 [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Studio Standard-J Edition V9.0.1A [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Studio Enterprise Edition V9.1.0 [a,b,c] | Windows | F3FMihs | T002174WP-02 |
| Interstage Studio Standard-J Edition V9.1.0 [a,b,c] | Windows | F3FMihs | T002174WP-02 |
| Interstage Studio with UML Modeling Tool V9.1.0 [a,b,c] | Windows | F3FMihs | T002174WP-02 |
| Interstage Studio Enterprise Edition V9.1.0B [a,b,c] | Windows | F3FMihs | T002174WP-02 |
| Interstage Studio Standard-J Edition V9.1.0B [a,b,c] | Windows | F3FMihs | T002174WP-02 |
| Interstage Studio with UML Modeling Tool V9.1.0B [a,b,c] | Windows | F3FMihs | T002174WP-02 |
| Interstage Studio Enterprise Edition V9.2.0 [a,b,c] | Windows | F3FMihs | T004344WP-01 |
| Interstage Studio Standard-J Edition V9.2.0 [a,b,c] | Windows | F3FMihs | T004344WP-01 |
| Interstage Studio with UML Modeling Tool V9.2.0 [a,b,c] | Windows | F3FMihs | T004344WP-01 |
| 製品名 | 対象OS | パッケージ名 | Patch ID |
|---|---|---|---|
| Interstage Web Server V9.0.0 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T001003LP-03 |
| Interstage Web Server V9.0.1 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T001003LP-03 |
| Interstage Web Server V9.1.0 [a] | RHEL-AS4(x86)/ AS4(EM64T) | FJSVihs | T002176LP-02 |
| Interstage Web Server V9.0.0 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T001044LP-03 |
| Interstage Web Server V9.0.1 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T001044LP-03 |
| Interstage Web Server V9.1.0 [a] | RHEL5(x86)/ RHEL5(Intel64) | FJSVihs | T002177LP-02 |
| Interstage Web Server V9.0.0 [a] | Solaris | FJSVihs | T001004SP-05 |
| Interstage Web Server V9.1.0 [a] | Solaris | FJSVihs | T002180SP-03 |
| Interstage Web Server V9.1.0A [a] | Solaris | FJSVihs | T002180SP-03 |
| Interstage Web Server V9.0.0 [a,b,c] | Windows | F3FMihs | T001001WP-04 |
| Interstage Web Server V9.1.0 [a,b,c] | Windows | F3FMihs | T002174WP-02 |
パッチ入手に関しては、当社サポートセンターにお問い合わせください。
参考: 該当製品の確認方法
製品のバージョンを確認するには、製品に添付の「ソフトウェア説明書」を参照してください。
3-3. 回避方法
ありません。
4. 関連情報
- CVE-2008-2364
The ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server 2.0.63 and 2.2.8 does not limit the number of forwarded interim responses, which allows remote HTTP servers to cause a denial of service (memory consumption) via a large number of interim responses.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2364 - JVNDB-2008-001453
Apache HTTP Server の ap_proxy_http_process_response() 関数におけるサービス運用妨害(DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001453.html - CVE-2010-0425
modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which allows remote attackers to execute arbitrary code via unspecified vectors related to a crafted request, a reset packet, and "orphaned callback pointers."
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0425 - JVNDB-2010-001159
Apache HTTP Server の mod_isapi における脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001159.html - CVE-2010-0434
The ap_read_request function in server/protocol.c in the Apache HTTP Server 2.2.x before 2.2.15, when a multithreaded MPM is used, does not properly handle headers in subrequests in certain circumstances involving a parent request that has a body, which might allow remote attackers to obtain sensitive information via a crafted request that triggers access to memory locations associated with an earlier request.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0434 - JVNDB-2010-001174
Apache HTTP Server の ap_read_request 関数における重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001174.html
5. 改版履歴
- 2010年7月26日 新規掲載
