CVE

Id
25098  
CVE No.
CVE-2007-1741  
Status
Candidate  
Description
Multiple race conditions in suexec in Apache HTTP Server (httpd) 2.2.3 between directory and file validation, and their usage, allow local users to gain privileges and execute arbitrary code by renaming directories or performing symlink attacks. NOTE: the researcher, who is reliable, claims that the vendor disputes the issue because "the attacks described rely on an insecure server configuration" in which the user "has write access to the document root."  
Phase
Assigned (20070328)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
249752 25098 CVE-2007-1741 IDEFENSE:20070411 Apache HTTPD suEXEC Multiple Vulnerabilities  View
249753 25098 CVE-2007-1741 URL:http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=511  View
249754 25098 CVE-2007-1741 MLIST:[apache-http-dev] 20070328 [Fwd: iDefense Final Notice [IDEF1445]]  View
249755 25098 CVE-2007-1741 URL:http://marc.info/?l=apache-httpd-dev&m=117511568709063&w=2  View
249756 25098 CVE-2007-1741 MLIST:[apache-http-dev] 20070328 Re: [Fwd: iDefense Final Notice [IDEF1445]]  View
249757 25098 CVE-2007-1741 URL:http://marc.info/?l=apache-httpd-dev&m=117511834512138&w=2  View
249758 25098 CVE-2007-1741 BID:23438  View
249759 25098 CVE-2007-1741 URL:http://www.securityfocus.com/bid/23438  View
249760 25098 CVE-2007-1741 OSVDB:38639  View
249761 25098 CVE-2007-1741 URL:http://osvdb.org/38639  View
249762 25098 CVE-2007-1741 SECTRACK:1017904  View
249763 25098 CVE-2007-1741 URL:http://www.securitytracker.com/id?1017904  View
249764 25098 CVE-2007-1741 XF:apache-suexec-privilege-escalation(33584)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
53067 JVNDB-2007-001759 Apache HTTP Server (httpd) の suexec における任意の UID/GID 所有のファイルを生成される脆弱性 Apache HTTP Server (httpd) の suexec は、コマンドライン上でユーザとグループ ID の組み合わせを確認しないため、/proc がマウントされている際に、任意の UID/GID 所有のファイルを生成される脆弱性が存在します。 CVE-2007-1743 25098 4.4 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001759.html  View