2 matches found
CVE-2012-4443
Monkey HTTP Daemon 0.9.3 uses a real UID of root and a real GID of root during execution of CGI scripts, which might allow local users to gain privileges by leveraging cgi-bin write access...
CVE-2012-4443
CVE-2012-4443 affects Monkey HTTP Daemon 0.9.3. The issue stems from the daemon executing CGI scripts with real UID/GID of root, enabling local users to potentially gain privileges by exploiting write access to cgi-bin. This is a local-privilege-escalation path described in multiple sources. No r...