Lucene search

K
cve[email protected]CVE-2012-0031
HistoryJan 18, 2012 - 8:55 p.m.

CVE-2012-0031

2012-01-1820:55:02
web.nvd.nist.gov
732
5
apache
http server
2.2.21
vulnerability
cve-2012-0031
denial of service
daemon crash
nvd

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7

Confidence

High

EPSS

0

Percentile

9.8%

scoreboard.c in the Apache HTTP Server 2.2.21 and earlier might allow local users to cause a denial of service (daemon crash during shutdown) or possibly have unspecified other impact by modifying a certain type field within a scoreboard shared memory segment, leading to an invalid call to the free function.

Affected configurations

NVD
Node
apachehttp_serverRange2.0.02.0.65
OR
apachehttp_serverRange2.2.02.2.22
Node
debiandebian_linuxMatch5.0
OR
debiandebian_linuxMatch6.0
OR
debiandebian_linuxMatch7.0
Node
opensuseopensuseMatch11.4
OR
suselinux_enterprise_serverMatch10sp4-
OR
suselinux_enterprise_software_development_kitMatch10sp4
Node
redhatjboss_enterprise_web_serverMatch1.0.0
AND
redhatenterprise_linuxMatch5.0
OR
redhatenterprise_linuxMatch6.0
Node
redhatstorageMatch2.0
OR
redhatenterprise_linux_desktopMatch6.0
OR
redhatenterprise_linux_eusMatch6.2
OR
redhatenterprise_linux_serverMatch6.0
OR
redhatenterprise_linux_server_ausMatch6.2
OR
redhatenterprise_linux_workstationMatch6.0

References

Social References

More

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7

Confidence

High

EPSS

0

Percentile

9.8%