Lucene search
Ubuntu.comUB:CVE-2012-1181HistoryMar 19, 2012 - 12:00 a.m.
CVE-2012-1181
2012-03-1900:00:00
ubuntu.com
ubuntu.com
9
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
84.9%
fcgid_spawn_ctl.c in the mod_fcgid module 2.3.6 for the Apache HTTP Server
does not recognize the FcgidMaxProcessesPerClass directive for a virtual
host, which makes it easier for remote attackers to cause a denial of
service (memory consumption) via a series of HTTP requests that triggers a
process count higher than the intended limit.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 11.04 | noarch | libapache2-mod-fcgid | < 1:2.3.6-1+squeeze1build0.11.04.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | libapache2-mod-fcgid | < 1:2.3.6-1+squeeze1build0.11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | libapache2-mod-fcgid | < 1:2.3.6-1.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | libapache2-mod-fcgid | < 1:2.3.6-1.1 | UNKNOWN |
| ubuntu | 13.04 | noarch | libapache2-mod-fcgid | < 1:2.3.6-1.1 | UNKNOWN |
| ubuntu | 13.10 | noarch | libapache2-mod-fcgid | < 1:2.3.6-1.1 | UNKNOWN |
Related
nessus
nessus
Debian DSA-2436-1 : libapache2-mod-fcgid - inactive resource limits
2012-03-20 00:00:00
GLSA-201207-09 : mod_fcgid: Multiple vulnerabilities
2012-07-10 00:00:00
debiancve
debiancve
CVE-2012-1181
2012-03-19 21:55:01
securityvulns
securityvulns
Apache FCGID module resources exhaustion
2012-03-20 00:00:00
[SECURITY] [DSA 2436-1] libapache2-mod-fcgid security update
2012-03-20 00:00:00
openvas
openvas
Debian Security Advisory DSA 2436-1 (libapache2-mod-fcgid)
2012-04-30 00:00:00
Debian: Security Advisory (DSA-2436-1)
2012-04-30 00:00:00
Gentoo Security Advisory GLSA 201207-09 (mod_fcgid)
2012-08-10 00:00:00
debian
debian
[SECURITY] [DSA 2436-1] libapache2-mod-fcgid security update
2012-03-19 19:24:30
cve
cve
CVE-2012-1181
2012-03-19 21:55:01
nvd
nvd
CVE-2012-1181
2012-03-19 21:55:01
prion
prion
Design/Logic Flaw
2012-03-19 21:55:00
cvelist
cvelist
CVE-2012-1181
2012-03-19 21:00:00
gentoo
gentoo
mod_fcgid: Multiple vulnerabilities
2012-07-09 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.012 Low
EPSS
Percentile
84.9%
Related for UB:CVE-2012-1181