suexec software vulnerabilities
vulnerabilities.aspcode.net
Searching suexec software vulnerabilities
The modified suexec program in cPanel, when con
configured
|
compiled
|
modified
|
mod_php
|
program
|
Apache
|
suexec
|
cPanel
|
The modified suexec program in cPanel, when configured for mod_php and compiled for Apache 1.3.31 and earlier without mod_phpsuexec, allows local users to execute untrusted shared scripts and gain privileges, as demonstrated using untainted scripts such as (1) proftpdvhosts or (2) addalink.cgi, a different vulnerability than CVE-2004-0490.
Multiple race conditions in suexec in Apache HT
conditions
|
Multiple
|
Apache
|
Server
|
suexec
|
race
|
HTTP
|
Multiple race conditions in suexec in Apache HTTP Server (httpd) 2.2.3 between directory and file validation, and their usage, allow local users to gain privileges and execute arbitrary code by renaming directories or performing symlink attacks. NOTE: the researcher, who is reliable, claims that the vendor disputes the issue because "the attacks described rely on an insecure server configuration" in which the user "has write access to the document root."
suexec in Apache HTTP Server (httpd) 2.2.3 uses
Server
|
Apache
|
suexec
|
HTTP
|
suexec in Apache HTTP Server (httpd) 2.2.3 uses a partial comparison for verifying whether the current directory is within the document root, which might allow local users to perform unauthorized operations on incorrect directories, as demonstrated using "html_backup" and "htmleditor" under an "html" directory. NOTE: the researcher, who is reliable, claims that the vendor disputes the issue because "the attacks described rely on an insecure server configuration" in which the user "has write access to the document root."
suexec in Apache HTTP Server (httpd) 2.2.3 does
Server
|
Apache
|
suexec
|
HTTP
|
suexec in Apache HTTP Server (httpd) 2.2.3 does not verify combinations of user and group IDs on the command line, which might allow local users to leverage other vulnerabilities to create arbitrary UID/GID owned files if /proc is mounted. NOTE: the researcher, who is reliable, claims that the vendor disputes the issue because "the attacks described rely on an insecure server configuration" in which the user "has write access to the document root." In addition, because this is dependent on other vulnerabilities, perhaps this is resultant and should not be included in CVE.
Software vulnerabilities results 1 to 5 of 5
Page:
1