FKIE_CVE-2009-3287

Vulnerability from fkie_nvd - Published: 2009-09-22 10:30 - Updated: 2025-04-09 00:30
Severity ?
Summary
lib/thin/connection.rb in Thin web server before 1.2.4 relies on the X-Forwarded-For header to determine the IP address of the client, which allows remote attackers to spoof the IP address and hide activities via a modified X-Forwarded-For header.
References
cve@mitre.orghttp://github.com/macournoyer/thin/blob/master/CHANGELOG
cve@mitre.orghttp://github.com/macournoyer/thin/commit/7bd027914c5ffd36bb408ef47dc749de3b6e063aPatch
cve@mitre.orghttp://www.openwall.com/lists/oss-security/2009/09/12/1
af854a3a-2127-422b-91ae-364da2661108http://github.com/macournoyer/thin/blob/master/CHANGELOG
af854a3a-2127-422b-91ae-364da2661108http://github.com/macournoyer/thin/commit/7bd027914c5ffd36bb408ef47dc749de3b6e063aPatch
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2009/09/12/1
Impacted products
Vendor Product Version
macournoyer thin *
macournoyer thin 0.4.0
macournoyer thin 0.4.1
macournoyer thin 0.5.0
macournoyer thin 0.5.1
macournoyer thin 0.5.2
macournoyer thin 0.5.3
macournoyer thin 0.5.4
macournoyer thin 0.6.0
macournoyer thin 0.6.3
macournoyer thin 0.6.4
macournoyer thin 0.7.0
macournoyer thin 0.7.1
macournoyer thin 0.8.0
macournoyer thin 0.8.1
macournoyer thin 0.8.2
macournoyer thin 1.0.0
macournoyer thin 1.1.0
macournoyer thin 1.1.1
macournoyer thin 1.2.0
macournoyer thin 1.2.1
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DDB8B96B-7544-4ED1-97AF-BED85A6E02A2",
              "versionEndIncluding": "1.2.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "3722C121-CA76-4BD6-9B17-059C1051BD3D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A8DFE094-2523-47F6-9310-BE48DF205825",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "DCA76B41-8699-4AB9-8569-98D792359C53",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D9BDC31A-0F16-4817-802B-C603050D7E83",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB082342-11F8-479C-B884-0D3E6074A600",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5367748-33ED-4AFC-951A-B3B10B9CA94F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.5.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "627C15A0-669D-4E56-9C31-8B8FBF60F3C0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "72D1B13B-96DE-4151-BEEC-2D438CBD4B7E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.6.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "F90B1079-9276-486F-86B8-B7E2FEF49B84",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.6.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A8E67F2-6A68-4DF2-BBFC-CD5FB8401CCF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7D151CA6-9C63-489D-B4AC-19F357E75C73",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.7.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A47C57AC-1892-40FE-9F03-DAFBAF509976",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9EB06946-318C-4E86-8F73-43E16A9EFEA3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.8.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F03A874-0753-49F6-A9BD-3798929B3C1C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:0.8.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "57048132-7659-444A-B78A-12B199E935B7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:1.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F00DA27E-EB76-4773-A7DE-14246C24FFFA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:1.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1A8B33E0-77F2-405F-8755-02C30509C652",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:1.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "49E5A94C-3262-4AA3-90F0-5E7B45E213A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:1.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "63C61B64-0B37-4F7B-8C47-BCA425E09A97",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:macournoyer:thin:1.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F2E2ACB-9ED2-4712-8A25-DE288DBF27DE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "lib/thin/connection.rb in Thin web server before 1.2.4 relies on the X-Forwarded-For header to determine the IP address of the client, which allows remote attackers to spoof the IP address and hide activities via a modified X-Forwarded-For header."
    },
    {
      "lang": "es",
      "value": "lib/thin/connection.rb en el servidor web Thin anterior a v1.2.4 permite determinar la direcci\u00f3n IP del cliente sobre la cabecera X-Forwarded-For, lo que permite a atacantes remotos suplantar la direcci\u00f3n IP y ocultar la actividad a trav\u00e9s de una cabecera X-Forwarded-For."
    }
  ],
  "id": "CVE-2009-3287",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2009-09-22T10:30:00.640",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://github.com/macournoyer/thin/blob/master/CHANGELOG"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://github.com/macournoyer/thin/commit/7bd027914c5ffd36bb408ef47dc749de3b6e063a"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.openwall.com/lists/oss-security/2009/09/12/1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://github.com/macournoyer/thin/blob/master/CHANGELOG"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://github.com/macournoyer/thin/commit/7bd027914c5ffd36bb408ef47dc749de3b6e063a"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2009/09/12/1"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.