Vulnerability Name:

CVE-2012-6153 (CCN-95328)

Assigned:2012-12-06
Published:2014-08-18
Updated:2018-01-05
Summary:http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a certificate with a subject that specifies a common name in a field that is not the CN field.
Note: this issue exists because of an incomplete fix for CVE-2012-5783.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-20
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: BugTraq Mailing List, Mon Aug 18 2014 - 03:00:28 CDT
CVE-2014-3577: Apache HttpComponents client: Hostname verification susceptible to MITM attack

Source: MITRE
Type: CNA
CVE-2012-6153

Source: CCN
Type: Apache Web site
HttpComponents

Source: REDHAT
Type: Third Party Advisory
RHSA-2014:1098

Source: CCN
Type: RHSA-2014-1162
Important: Red Hat JBoss Enterprise Application Platform 6.3.0 security update

Source: CCN
Type: RHSA-2014-1321
Important: Red Hat JBoss Enterprise Application Platform 5.2.0 security update

Source: REDHAT
Type: Third Party Advisory
RHSA-2014:1833

Source: CCN
Type: RHSA-2014-1834
Important: Red Hat JBoss Enterprise Application Platform 5.2.0 security update

Source: REDHAT
Type: Third Party Advisory
RHSA-2014:1834

Source: REDHAT
Type: Third Party Advisory
RHSA-2014:1835

Source: REDHAT
Type: Third Party Advisory
RHSA-2014:1836

Source: REDHAT
Type: Third Party Advisory
RHSA-2014:1891

Source: REDHAT
Type: Third Party Advisory
RHSA-2014:1892

Source: CCN
Type: RHSA-2014-2019
Important: Red Hat JBoss Enterprise Application Platform 6.3.2 security update

Source: CCN
Type: RHSA-2015-0125
Important: Red Hat JBoss Web Framework Kit 2.7.0 update

Source: REDHAT
Type: Third Party Advisory
RHSA-2015:0125

Source: REDHAT
Type: Third Party Advisory
RHSA-2015:0158

Source: REDHAT
Type: Third Party Advisory
RHSA-2015:0675

Source: REDHAT
Type: Third Party Advisory
RHSA-2015:0720

Source: REDHAT
Type: Third Party Advisory
RHSA-2015:0765

Source: REDHAT
Type: Third Party Advisory
RHSA-2015:0850

Source: REDHAT
Type: Third Party Advisory
RHSA-2015:0851

Source: REDHAT
Type: UNKNOWN
RHSA-2015:1888

Source: CONFIRM
Type: Vendor Advisory
http://svn.apache.org/viewvc?view=revision&revision=1411705

Source: CCN
Type: IBM Security Bulletin 0717485 (Tivoli Netcool/Impact)
IBM Tivoli Netcool Impact is affected by open source vulnerabilities

Source: CCN
Type: IBM Security Bulletin 1694835
Fixes available for Security Vulnerabilities in Apache HttpComponents that affect IBM WebSphere Portal (CVE-2012-6153; CVE-2014-3577)

Source: CCN
Type: IBM Security Bulletin 1696864
Multiple vulnerabilities fixed in Liberty for Java for IBM Bluemix (CVE-2012-6153, CVE-2014-3577, CVE-2015-0178)

Source: CCN
Type: IBM Security Bulletin 1961713
Potential security vulnerabilities relating to IBM Forms Server using Apache HttpComponents (CVE-2014-3577, CVE-2012-6153)

Source: CCN
Type: IBM Security Bulletin 1961714
Potential vulnerability exists in Forms Experience Builder based on its use of Apache HttpComponents (CVE-2014-3577, CVE-2012-6153)

Source: CCN
Type: IBM Security Bulletin 1964916
Apache HttpComponents vulnerable to spoofing attacks are affecting Case Manager Client (CVE-2012-6153) (CVE-2014-3577)

Source: CCN
Type: IBM Security Bulletin 1969251
Apache HTTPComponents vulnerabilities in WebSphere Application Server (CVE-2012-6153, CVE-2014-3577)

Source: CCN
Type: IBM Security Bulletin 1970090
IBM FileNet eForms is affected by vulnerabilities in Apache HttpComponents(CVE-2012-6153 and CVE-2014-3577)

Source: CCN
Type: IBM Security Bulletin 1972799
Multiple vulnerability in Product IBM Tivoli Common Reporting (CVE-2015-7436,CVE-2015-7435,CVE-2012-6153,CVE-2014-3577,CVE-2015-7450,CVE-2015-4872)

Source: CCN
Type: IBM Security Bulletin 1982420 (InfoSphere Information Server)
Vulnerabilities in Apache HttpComponents affect IBM InfoSphere Information Server (CVE-2012-6153 CVE-2014-3577)

Source: BID
Type: Third Party Advisory, VDB Entry
69257

Source: CCN
Type: BID-69257
Apache HttpComponents Incomplete Fix SSL Certificate Validation Security Bypass Vulnerability

Source: UBUNTU
Type: Third Party Advisory
USN-2769-1

Source: CONFIRM
Type: Third Party Advisory
https://access.redhat.com/solutions/1165533

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1129916

Source: XF
Type: UNKNOWN
apache-cve20126153-spoofing(95328)

Source: CONFIRM
Type: Third Party Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05103564

Source: CCN
Type: IBM Security Bulletin 6348046 (Security Access Manager)
Security vulnerabilities have been fixed in the IBM Security Access Manager and IBM Security Verify Access products

Source: CCN
Type: IBM Security Bulletin 6453091 (WebSphere Application Server)
Multiple Vulnerabilities in Apache HttpComponents and HttpCommons affect WebSphere Application Server

Source: CCN
Type: IBM Security Bulletin 6457781 (Content Collector for Email)
Multiple vulnerabilities in Apache HttpComponents and HttpCommons affect embedded WebSphere Application Server, which affects Content Collector for Email

Source: CCN
Type: IBM Security Bulletin 6471655 (Tivoli Monitoring)
Multiple vulnerabilities affect IBM Tivoli Monitoring installed WebSphere Application Server

Source: CCN
Type: IBM Security Bulletin 6485597 (Security Identity Manager Virtual Appliance)
Security vulnerabilities have been fixed in IBM Security Identity Manager Virtual Appliance

Source: CCN
Type: IBM Security Bulletin 6491177 (Security Identity Manager)
Multiple security vulnerabilities have been fixed in IBM Security Verify Governance, Identity Manager virtual appliance component (ISVG IMVA)

Source: CCN
Type: IBM Security Bulletin 6847289 (Control Desk)
Apache Commons HttpClient 3.x (and few others) allow Man-In-The-Middle (MITM) attack

Source: CCN
Type: IBM Security Bulletin 6956539 (MobileFirst Platform Foundation)
Multiple vulnerabilities found with third-party libraries used by IBM MobileFirst Platform

Source: CCN
Type: IBM Security Bulletin 6956846 (B2B Advanced Communications)
IBM B2B Advanced Communications is vulnerable to multiple issues due to Apache HttpClient

Source: CCN
Type: IBM Security Bulletin 6985905 (Tivoli Application Dependency Discovery Manager)
TADDM is vulnerable to a denial of service due to vulnerabilities in Apache HttpClient

Source: CCN
Type: IBM Security Bulletin 7003887 (Application Performance Management)
Multiple Vulnerabilities of Apache HttpClient have affected APM Linux KVM Agent

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2012-6153

Vulnerable Configuration:Configuration 1:
  • cpe:/a:apache:commons-httpclient:*:*:*:*:*:*:*:* (Version >= 4.0 and <= 4.2.2)

    • Configuration CCN 1:
  • cpe:/a:ibm:websphere_portal:7.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_application_server:8.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux_workstation:6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_portal:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_application_server:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:8.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:9.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:smartcloud_control_desk:7.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_application_server:8.5.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_portal:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:forms_experience_builder:8.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_portal:6.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:11.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:forms_experience_builder:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:case_manager:5.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:forms_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:forms_server:4.0.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:forms_server:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:forms_server:8.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_netcool/impact:7.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:2.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:3.1.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:3.1.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:forms_server:8.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:case_manager:5.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:3.1.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:forms_experience_builder:8.5.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:infosphere_information_server:11.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:forms_server:8.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_common_reporting:3.1.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:case_manager:5.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_application_server:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_monitoring:6.3.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_monitoring:6.3.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_monitoring:6.3.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_monitoring:6.3.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_monitoring:6.3.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_monitoring:6.3.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:application_performance_management:8.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:content_collector:4.0.1:*:*:*:email:*:*:*
  • OR cpe:/a:ibm:mobilefirst_platform_foundation:8.0.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_application_dependency_discovery_manager:7.3.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_identity_manager_virtual_appliance:7.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_verify_access:10.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_access_manager:9.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:control_desk:7.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:multi-enterprise_integration_gateway:1.0.0.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:27050
    P
    		ELSA-2014-1166 -- jakarta-commons-httpclient security update (Important)
    2015-02-23
    oval:org.mitre.oval:def:26509
    P
    		ELSA-2014-1146 -- httpcomponents-client security update (Important)
    2014-11-17
    oval:com.ubuntu.precise:def:20126153000
    V
    		CVE-2012-6153 on Ubuntu 12.04 LTS (precise) - low.
    2014-09-04
    oval:com.ubuntu.trusty:def:20126153000
    V
    		CVE-2012-6153 on Ubuntu 14.04 LTS (trusty) - low.
    2014-09-04
    oval:com.ubuntu.xenial:def:201261530000000
    V
    		CVE-2012-6153 on Ubuntu 16.04 LTS (xenial) - low.
    2014-09-04
    oval:com.ubuntu.xenial:def:20126153000
    V
    		CVE-2012-6153 on Ubuntu 16.04 LTS (xenial) - low.
    2014-09-04
    BACK
    apache commons-httpclient *
    ibm websphere portal 7.0
    ibm infosphere information server 8.5
    ibm websphere application server 8.0
    redhat enterprise linux workstation 6
    ibm websphere portal 8.0
    ibm websphere application server 8.5
    ibm infosphere information server 8.7
    ibm infosphere information server 9.1
    ibm smartcloud control desk 7.5
    ibm websphere application server 8.5.5
    ibm websphere portal 8.5
    ibm forms experience builder 8.5.1
    ibm websphere portal 6.1
    ibm infosphere information server 11.3
    ibm forms experience builder 8.5
    ibm case manager 5.1.1
    ibm forms server 4.0
    ibm forms server 4.0.0.2
    ibm forms server 8.0
    ibm forms server 8.0.1
    ibm tivoli netcool/impact 7.1.0
    ibm tivoli common reporting 2.1
    ibm tivoli common reporting 2.1.1
    ibm tivoli common reporting 3.1
    ibm tivoli common reporting 3.1.0.1
    ibm tivoli common reporting 3.1.0.2
    ibm forms server 8.1
    ibm case manager 5.2.1
    ibm tivoli common reporting 3.1.2.0
    ibm forms experience builder 8.5.0.1
    ibm infosphere information server 11.5
    ibm forms server 8.2
    ibm tivoli common reporting 3.1.2.1
    ibm case manager 5.2.0
    ibm websphere application server 9.0
    ibm tivoli monitoring 6.3.0.2
    ibm tivoli monitoring 6.3.0.3
    ibm tivoli monitoring 6.3.0.4
    ibm tivoli monitoring 6.3.0.5
    ibm tivoli monitoring 6.3.0.6
    ibm tivoli monitoring 6.3.0.7
    ibm application performance management 8.1.4
    ibm content collector 4.0.1
    ibm mobilefirst platform foundation 8.0.0.0
    ibm tivoli application dependency discovery manager 7.3.0.0
    ibm security identity manager virtual appliance 7.0.1
    ibm security verify access 10.0.0
    ibm security access manager 9.0.7
    ibm control desk 7.6
    ibm multi-enterprise integration gateway 1.0.0.1