CVE-2011-4317

Apache HTTP Server 1.3.x-1.3.42, 2.0.x-2.0.64, 2.2.x-2.2.21 SSRF via Malformed URI

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-4317. PoCs published by Prutha Parikh.

AI-analyzed exploit summary The provided code is a writeup describing a security-bypass vulnerability in Apache HTTP Server (CVE-2011-4317). It mentions patterns like RewriteRule and ProxyPassMatch that could be exploited to bypass security restrictions and obtain sensitive information.

Description

The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an @ (at sign) character and a : (colon) character in invalid positions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Prutha Parikh · textremotelinux
https://www.exploit-db.com/exploits/36352

The provided code is a writeup describing a security-bypass vulnerability in Apache HTTP Server (CVE-2011-4317). It mentions patterns like RewriteRule and ProxyPassMatch that could be exploited to bypass security restrictions and obtain sensitive information.

Classification
Writeup 80%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Theoretical
Target: Apache HTTP Server
No auth needed
Prerequisites: Access to Apache HTTP Server configuration
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (33)

Core 33
Core References
Mailing List vendor-advisory x_refsource_apple
http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=134987041210674&w=2
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=133294460209056&w=2
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=756483
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2013-02/msg00012.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1026353
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2013-02/msg00009.html
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48551
Vendor Advisory x_refsource_confirm
http://kb.juniper.net/JSA10585
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2012:003
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT5501
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2012-0128.html
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2012/dsa-2405

Scores

EPSS 0.6078
EPSS Percentile 99.0%

Details

CWE
CWE-20
Status published
Products (49)
apache/http_server 1.3
apache/http_server 1.3.0
apache/http_server 1.3.1
apache/http_server 1.3.1.1
apache/http_server 1.3.2
apache/http_server 1.3.3
apache/http_server 1.3.4
apache/http_server 1.3.5
apache/http_server 1.3.6
apache/http_server 1.3.7
... and 39 more
Published Nov 30, 2011
Tracked Since Feb 18, 2026