SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Web Server/CGI)  >   Apache HTTPD Vendors:   Apache Software Foundation
(Sun Issues Fix) Apache HTTPD scoreboard Protection Flaw Lets Local Users Terminate Arbitrary Processes
SecurityTracker Alert ID:  1019446
SecurityTracker URL:  http://securitytracker.com/id/1019446
CVE Reference:   CVE-2007-3304   (Links to External Site)
Date:  Feb 20 2008
Impact:   Denial of service via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 1.3.x, 2.2.x
Description:   A vulnerability was reported in Apache HTTPD. A local user can cause denial of service conditions.

The server does not verify that a process is actually an Apache child process before sending signals to the process. A local user with the ability to run scripts can modify the scoreboard arrays to reference arbitrary process IDs and cause arbitrary processes to be terminated.

The vendor was notified on May 16, 2006.

PSNC Security Team discovered this vulnerability.

Impact:   A local user with privileges to run scripts on the target system can terminate arbitrary processes on the target system.
Solution:   Sun has issued a fix.

SPARC Platform

* Solaris 8 with patch 116973-06 or later
* Solaris 9 with patch 113146-09 or later
* Solaris 10 with patches 120543-10 and 122911-08 or later

x86 Platform

* Solaris 8 with patch 116974-06 or later
* Solaris 9 with patch 114145-08 or later
* Solaris 10 with patches 120544-10 and 122912-08 or later

The Sun advisory is available at:

http://sunsolve.sun.com/search/document.do?assetkey=1-66-200032-1

Vendor URL:  httpd.apache.org/ (Links to External Site)
Cause:   Access control error
Underlying OS:  UNIX (Solaris - SunOS)
Underlying OS Comments:  8, 9, 10

Message History:   This archive entry is a follow-up to the message listed below.
Jun 26 2007 Apache HTTPD scoreboard Protection Flaw Lets Local Users Terminate Arbitrary Processes



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2022, SecurityGlobal.net LLC