Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDDE2BC01F-DC44-11E1-9F4D-002354ED89BC
HistoryMar 02, 2012 - 12:00 a.m.

Apache -- Insecure LD_LIBRARY_PATH handling

2012-03-0200:00:00
vuxml.freebsd.org
20

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

11.9%

JSON

Apache reports:

Insecure handling of LD_LIBRARY_PATH was found that could lead to
the current working directory to be searched for DSOs. This could
allow a local user to execute code as root if an administrator runs
apachectl from an untrusted directory.

Related

prion 1
httpd 2
seebug 3
ubuntucve 1
cve 1
openvas 14
nessus 17
debiancve 1
securityvulns 7
fedora 1
freebsd 1
altlinux 3
f5 2
redhat 1
gentoo 1
prion
prion
Directory traversal
2012-04-18 10:33:00
httpd
httpd
Apache Httpd < 2.4.2 : insecure LD_LIBRARY_PATH handling
2012-02-14 00:00:00
Apache Httpd < 2.2.23 : insecure LD_LIBRARY_PATH handling
2012-02-14 00:00:00
seebug
seebug
Apache HTTP Server envvars本地权限提升漏洞
2012-09-18 00:00:00
Apache HTTP Server 'LD_LIBRARY_PATH'不安全库加载任意代码执行漏洞
2012-10-11 00:00:00
Apache HTTP Server 'LD_LIBRARY_PATH'不安全库装载任意代码执行漏洞
2012-04-20 00:00:00
ubuntucve
ubuntucve
CVE-2012-0883
2012-04-18 00:00:00
cve
cve
CVE-2012-0883
2012-04-18 10:33:00
openvas
openvas
Apache HTTP Server Privilege Escalation Vulnerability (Mar 2012) - Linux
2021-11-01 00:00:00
FreeBSD Ports: apache
2012-08-10 00:00:00
FreeBSD Ports: apache
2012-08-10 00:00:00
nessus
nessus
FreeBSD : Apache -- Insecure LD_LIBRARY_PATH handling (de2bc01f-dc44-11e1-9f4d-002354ed89bc)
2012-08-02 00:00:00
Apache 2.4.x < 2.4.2 'LD_LIBRARY_PATH' Insecure Library Loading
2012-04-19 00:00:00
Apache 2.2 < 2.2.23 Multiple Vulnerabilities
2012-09-17 00:00:00
debiancve
debiancve
CVE-2012-0883
2012-04-18 10:33:00
securityvulns
securityvulns
[ MDVSA-2012:154 ] apache
2012-10-01 00:00:00
Apache security vulnerabilities
2012-10-01 00:00:00
[security bulletin] HPSBMU02900 rev.2 - HP System Management Homepage &#40;SMH&#41; running on Linux and Windows, Multiple Remote and Local Vulnerabilities
2013-07-19 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: httpd-2.2.23-1.fc17
2013-02-12 04:59:23
freebsd
freebsd
apache22 -- several vulnerabilities
2012-09-13 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
f5
f5
SOL15899 - Multiple Apache vulnerabilities CVE-2012-4558, CVE-2012-0883, CVE-2011-3348, and CVE-2010-1452
2014-12-08 00:00:00
K15899 : Multiple Apache vulnerabilities CVE-2012-4558, CVE-2012-0883, CVE-2011-3348, and CVE-2010-1452
2014-12-08 00:00:00
redhat
redhat
(RHSA-2012:1594) Important: JBoss Enterprise Application Platform 6.0.1 update
2012-12-18 00:00:00
gentoo
gentoo
Apache HTTP Server: Multiple vulnerabilities
2012-06-24 00:00:00

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

11.9%

JSON
Related for DE2BC01F-DC44-11E1-9F4D-002354ED89BC
prion1httpd2seebug3ubuntucve1cve1openvas14nessus17debiancve1securityvulns7fedora1freebsd1altlinux3f52redhat1gentoo1