Lucene search
K

5769 matches found

RedHat Linux
RedHat Linux
added 2007/05/14 4:59 p.m.5 views

tomcat directory traversal

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules modproxy, modrewrite, modjk, allows remote attackers to read arbitrary files via a .. dot dot sequence with combinations of 1 "/" slash, 2 "" backslash, and...

5CVSS6AI score0.90768EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2007/05/08 2:53 p.m.26 views

tomcat directory traversal

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules modproxy, modrewrite, modjk, allows remote attackers to read arbitrary files via a .. dot dot sequence with combinations of 1 "/" slash, 2 "" backslash, and...

5CVSS6AI score0.90768EPSS
Exploits2References4
Fedora
Fedora
added 2007/04/17 12:45 p.m.52 views

[SECURITY] Fedora Core 6 Update: php-5.1.6-3.5.fc6

PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated webpages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...

7.8CVSS0.6AI score0.18162EPSS
Exploits3
seebug.org
seebug.org
added 2007/04/17 12:0 a.m.212 views

Apache HTTPD suEXEC本地特权提升漏洞

Apache HTTP server是一款流行的WEB服务程序。 Apache HTTP server包含的suexec应用程序存在设计问题,本地攻击者可以利用漏洞提升特权。 问题一是路径检查竞争条件漏洞 在获得当前目录和更改目录中存在竞争条件问题。另一个存在于更改目录和检查目录是否为链接也存在竞争条件问题。目录结构在这些操作中更换,会导致可以在攻击者选择的任意目录中执行lstat。通过使用符号链接或重命名父目录来利用。第三个竞争条件存在于最后符号链接检查和执行目标两进制程序中。 问题二是路径检查错误 suexec工具使用strncmp检查是否当前目录是DOCU...

7.1AI score
Exploits0
UbuntuCve
UbuntuCve
added 2007/04/13 5:19 p.m.33 views

CVE-2007-1743

suexec in Apache HTTP Server httpd 2.2.3 does not verify combinations of user and group IDs on the command line, which might allow local users to leverage other vulnerabilities to create arbitrary UID/GID owned files if /proc is mounted. NOTE: the researcher, who is reliable, claims that the vend...

4.4CVSS6AI score0.00703EPSS
Exploits0References1
NVD
NVD
added 2007/04/13 5:19 p.m.25 views

CVE-2007-1743

suexec in Apache HTTP Server httpd 2.2.3 does not verify combinations of user and group IDs on the command line, which might allow local users to leverage other vulnerabilities to create arbitrary UID/GID owned files if /proc is mounted. NOTE: the researcher, who is reliable, claims that the vend...

4.4CVSS6.6AI score0.00703EPSS
Exploits0References4
NVD
NVD
added 2007/04/13 5:19 p.m.19 views

CVE-2007-1742

suexec in Apache HTTP Server httpd 2.2.3 uses a partial comparison for verifying whether the current directory is within the document root, which might allow local users to perform unauthorized operations on incorrect directories, as demonstrated using "htmlbackup" and "htmleditor" under an "html...

3.7CVSS6.1AI score0.00687EPSS
Exploits0References5
Prion
Prion
added 2007/04/13 5:19 p.m.19 views

Design/Logic Flaw

suexec in Apache HTTP Server httpd 2.2.3 does not verify combinations of user and group IDs on the command line, which might allow local users to leverage other vulnerabilities to create arbitrary UID/GID owned files if /proc is mounted. NOTE: the researcher, who is reliable, claims that the vend...

4.4CVSS6.9AI score0.00703EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2007/04/13 5:19 p.m.23 views

Design/Logic Flaw

suexec in Apache HTTP Server httpd 2.2.3 uses a partial comparison for verifying whether the current directory is within the document root, which might allow local users to perform unauthorized operations on incorrect directories, as demonstrated using "htmlbackup" and "htmleditor" under an "html...

3.7CVSS6.3AI score0.00687EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2007/04/13 5:19 p.m.7 views

CVE-2007-1742

suexec in Apache HTTP Server httpd 2.2.3 uses a partial comparison for verifying whether the current directory is within the document root, which might allow local users to perform unauthorized operations on incorrect directories, as demonstrated using "htmlbackup" and "htmleditor" under an "html...

6AI score
Exploits0References5
OSV
OSV
added 2007/04/13 5:19 p.m.8 views

CVE-2007-1743

suexec in Apache HTTP Server httpd 2.2.3 does not verify combinations of user and group IDs on the command line, which might allow local users to leverage other vulnerabilities to create arbitrary UID/GID owned files if /proc is mounted. NOTE: the researcher, who is reliable, claims that the vend...

6.5AI score
Exploits0References4
Cvelist
Cvelist
added 2007/04/13 5:0 p.m.50 views

CVE-2007-1742

suexec in Apache HTTP Server httpd 2.2.3 uses a partial comparison for verifying whether the current directory is within the document root, which might allow local users to perform unauthorized operations on incorrect directories, as demonstrated using "htmlbackup" and "htmleditor" under an "html...

6AI score0.00687EPSS
Exploits0References5
CVE
CVE
added 2007/04/13 5:0 p.m.151 views

CVE-2007-1742

Apache HTTP Server (httpd) 2.2.3’s suexec uses a partial path comparison to determine if the current directory is within the document root. This may allow local users to operate on incorrect directories under an html directory (e.g., html_backup/htmleditor). The issue is described across multiple...

3.7CVSS6AI score0.00687EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2007/04/13 5:0 p.m.47 views

CVE-2007-1743

suexec in Apache HTTP Server httpd 2.2.3 does not verify combinations of user and group IDs on the command line, which might allow local users to leverage other vulnerabilities to create arbitrary UID/GID owned files if /proc is mounted. NOTE: the researcher, who is reliable, claims that the vend...

4.4CVSS6.7AI score0.00703EPSS
Exploits0
Debian CVE
Debian CVE
added 2007/04/13 5:0 p.m.32 views

CVE-2007-1742

suexec in Apache HTTP Server httpd 2.2.3 uses a partial comparison for verifying whether the current directory is within the document root, which might allow local users to perform unauthorized operations on incorrect directories, as demonstrated using "htmlbackup" and "htmleditor" under an "html...

3.7CVSS6.1AI score0.00687EPSS
Exploits0
CVE
CVE
added 2007/04/13 5:0 p.m.167 views

CVE-2007-1743

CVE-2007-1743 affects Apache HTTP Server (httpd) with the suexec module. The issue is that suexec (in httpd 2.2.3) does not verify combinations of user and group IDs on the command line, which might allow a local user to leverage other vulnerabilities to create arbitrary UID/GID–owned files if /p...

4.4CVSS6.5AI score0.00703EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2007/04/13 4:19 p.m.23 views

Race condition

Multiple race conditions in suexec in Apache HTTP Server httpd 2.2.3 between directory and file validation, and their usage, allow local users to gain privileges and execute arbitrary code by renaming directories or performing symlink attacks. NOTE: the researcher, who is reliable, claims that th...

6.2CVSS7.6AI score0.00516EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2007/04/13 4:19 p.m.25 views

CVE-2007-1741

Multiple race conditions in suexec in Apache HTTP Server httpd 2.2.3 between directory and file validation, and their usage, allow local users to gain privileges and execute arbitrary code by renaming directories or performing symlink attacks. NOTE: the researcher, who is reliable, claims that th...

6.2CVSS7.3AI score0.00516EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2007/04/13 4:19 p.m.37 views

CVE-2007-1741

Multiple race conditions in suexec in Apache HTTP Server httpd 2.2.3 between directory and file validation, and their usage, allow local users to gain privileges and execute arbitrary code by renaming directories or performing symlink attacks. NOTE: the researcher, who is reliable, claims that th...

6.2CVSS6.3AI score0.00516EPSS
Exploits0References1
OSV
OSV
added 2007/04/13 4:19 p.m.8 views

CVE-2007-1741

Multiple race conditions in suexec in Apache HTTP Server httpd 2.2.3 between directory and file validation, and their usage, allow local users to gain privileges and execute arbitrary code by renaming directories or performing symlink attacks. NOTE: the researcher, who is reliable, claims that th...

7.3AI score
Exploits0References7
Rows per page
Query Builder