Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2012-0883
HistoryApr 18, 2012 - 12:00 a.m.

CVE-2012-0883

2012-04-1800:00:00
ubuntu.com
ubuntu.com
34

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

EPSS

0

Percentile

12.7%

JSON

envvars (aka envvars-std) in the Apache HTTP Server before 2.4.2 places a
zero-length directory name in the LD_LIBRARY_PATH, which allows local users
to gain privileges via a Trojan horse DSO in the current working directory
during execution of apachectl.

Related

prion 1
seebug 3
nvd 1
freebsd 2
httpd 2
cve 1
openvas 14
cvelist 1
nessus 17
debiancve 1
securityvulns 7
fedora 1
altlinux 3
f5 2
redhat 1
gentoo 1
prion
prion
Directory traversal
2012-04-18 10:33:00
seebug
seebug
Apache HTTP Server envvars本地权限提升漏洞
2012-09-18 00:00:00
Apache HTTP Server 'LD_LIBRARY_PATH'不安全库加载任意代码执行漏洞
2012-10-11 00:00:00
Apache HTTP Server 'LD_LIBRARY_PATH'不安全库装载任意代码执行漏洞
2012-04-20 00:00:00
nvd
nvd
CVE-2012-0883
2012-04-18 10:33:33
freebsd
freebsd
Apache -- Insecure LD_LIBRARY_PATH handling
2012-03-02 00:00:00
apache22 -- several vulnerabilities
2012-09-13 00:00:00
httpd
httpd
Apache Httpd < 2.4.2 : insecure LD_LIBRARY_PATH handling
2012-02-14 00:00:00
Apache Httpd < 2.2.23 : insecure LD_LIBRARY_PATH handling
2012-02-14 00:00:00
cve
cve
CVE-2012-0883
2012-04-18 10:33:33
openvas
openvas
FreeBSD Ports: apache
2012-08-10 00:00:00
Apache HTTP Server Privilege Escalation Vulnerability (Mar 2012) - Linux
2021-11-01 00:00:00
FreeBSD Ports: apache
2012-08-10 00:00:00
cvelist
cvelist
CVE-2012-0883
2012-04-18 10:00:00
nessus
nessus
FreeBSD : Apache -- Insecure LD_LIBRARY_PATH handling (de2bc01f-dc44-11e1-9f4d-002354ed89bc)
2012-08-02 00:00:00
Apache 2.4.x < 2.4.2 'LD_LIBRARY_PATH' Insecure Library Loading
2012-04-19 00:00:00
Apache 2.2 < 2.2.23 Multiple Vulnerabilities
2012-09-17 00:00:00
debiancve
debiancve
CVE-2012-0883
2012-04-18 10:33:33
securityvulns
securityvulns
[ MDVSA-2012:154 ] apache
2012-10-01 00:00:00
Apache security vulnerabilities
2012-10-01 00:00:00
[security bulletin] HPSBMU02900 rev.2 - HP System Management Homepage &#40;SMH&#41; running on Linux and Windows, Multiple Remote and Local Vulnerabilities
2013-07-19 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: httpd-2.2.23-1.fc17
2013-02-12 04:59:23
altlinux
altlinux
Security fix for the ALT Linux 9 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
f5
f5
K15899 : Multiple Apache vulnerabilities CVE-2012-4558, CVE-2012-0883, CVE-2011-3348, and CVE-2010-1452
2014-12-08 00:00:00
SOL15899 - Multiple Apache vulnerabilities CVE-2012-4558, CVE-2012-0883, CVE-2011-3348, and CVE-2010-1452
2014-12-08 00:00:00
redhat
redhat
(RHSA-2012:1594) Important: JBoss Enterprise Application Platform 6.0.1 update
2012-12-18 00:00:00
gentoo
gentoo
Apache HTTP Server: Multiple vulnerabilities
2012-06-24 00:00:00

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

EPSS

0

Percentile

12.7%

JSON
Related for UB:CVE-2012-0883
prion1seebug3nvd1freebsd2httpd2cve1openvas14cvelist1nessus17debiancve1securityvulns7fedora1altlinux3f52redhat1gentoo1