Lucene search
FreeBSDFB672330-02DB-11DD-BD06-0017319806E7HistoryMar 30, 2008 - 12:00 a.m.
suphp -- multiple local privilege escalation vulnerabilities
2008-03-3000:00:00
vuxml.freebsd.org
12
CVSS2
4.3
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
EPSS
0
Percentile
5.1%
Multiple local privilege escalation are found in the symlink
verification code. An attacker may use it to run a PHP script with
the victim’s privilege. This attack is a little harder when suphp
operates in paranoid mode. For suphp that runs in owner mode
which is the default in ports, immediate upgrade to latest
version is advised.
Related
openvas
openvas
FreeBSD Ports: suphp
2008-09-04 00:00:00
Debian: Security Advisory (DSA-1550-1)
2008-04-21 00:00:00
Fedora Update for mod_suphp FEDORA-2008-2868
2009-02-16 00:00:00
nessus
nessus
Fedora 7 : mod_suphp-0.6.3-1.fc7 (2008-2815)
2008-04-04 00:00:00
FreeBSD : suphp -- multiple local privilege escalation vulnerabilities (fb672330-02db-11dd-bd06-0017319806e7)
2008-04-11 00:00:00
Fedora 8 : mod_suphp-0.6.3-1.fc8 (2008-2868)
2008-04-04 00:00:00
cvelist
cvelist
CVE-2008-1614
2008-04-02 16:00:00
prion
prion
Race condition
2008-04-02 16:44:00
ubuntucve
ubuntucve
CVE-2008-1614
2008-04-02 00:00:00
nvd
nvd
CVE-2008-1614
2008-04-02 16:44:00
debian
debian
[SECURITY] [DSA 1550-1] New suphp packages fix local privilege escalation
2008-04-17 21:27:22
cve
cve
CVE-2008-1614
2008-04-02 16:44:00
CVSS2
4.3
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
EPSS
0
Percentile
5.1%
Related for FB672330-02DB-11DD-BD06-0017319806E7