(Sun Issues Fix) Apache HTTPD scoreboard Protection Flaw Lets Local Users Terminate Arbitrary Processes
|
|
SecurityTracker Alert ID: 1019446 |
|
SecurityTracker URL: http://securitytracker.com/id/1019446
|
|
CVE Reference:
CVE-2007-3304
(Links to External Site)
|
Date: Feb 20 2008
|
Impact:
Denial of service via local system
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 1.3.x, 2.2.x
|
Description:
A vulnerability was reported in Apache HTTPD. A local user can cause denial of service conditions.
The server does not verify that a process is actually an Apache child process before sending signals to the process. A local user with the ability to run scripts can modify the scoreboard arrays to reference arbitrary process IDs and cause arbitrary processes to be terminated.
The vendor was notified on May 16, 2006.
PSNC Security Team discovered this vulnerability.
|
Impact:
A local user with privileges to run scripts on the target system can terminate arbitrary processes on the target system.
|
Solution:
Sun has issued a fix.
SPARC Platform
* Solaris 8 with patch 116973-06 or later
* Solaris 9 with patch 113146-09 or later
* Solaris 10 with patches 120543-10 and 122911-08 or later
x86 Platform
* Solaris 8 with patch 116974-06 or later
* Solaris 9 with patch 114145-08 or later
* Solaris 10 with patches 120544-10 and 122912-08 or later
The Sun advisory is available at:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200032-1
|
Vendor URL: httpd.apache.org/ (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
UNIX (Solaris - SunOS)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Wed, 20 Feb 2008 00:07:11 -0500
Subject: http://sunsolve.sun.com/search/document.do?assetkey=1-66-200032-1
|
CVE-2006-5752
CVE-2007-3304
|
|
