JVN/CVE Demo: Nvdinfos

NVD

Id: 55456
Name: CVE-2007-3304
Description: Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the worker_score and process_score arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer."
Reject
CVSS Version: 2
CVSS Score: 4.7
Severity: Medium
CVSS Base Score: 4.7
CVSS Impact Subscore: 6.9
CVSS Exploit Subscore: 3.4
CVSS Vector: (AV:L/AC:M/Au:N/C:N/I:N/A:C)
Pub Date: 2017-01-07
Published: 2007-06-20
Modified Date: 2012-10-30
Seq: 2007-3304

Actions

Related NVD References

Id	NVD Id	NVD No.	Reference	Actions
281795	55456	CVE-2007-3304	20070701-01-P	View
281796	55456	CVE-2007-3304	http://bugs.gentoo.org/show_bug.cgi?id=186219	View
281797	55456	CVE-2007-3304	http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=245111	View
281798	55456	CVE-2007-3304	SSRT071476	View
281799	55456	CVE-2007-3304	http://httpd.apache.org/security/vulnerabilities_13.html	View
281800	55456	CVE-2007-3304	http://httpd.apache.org/security/vulnerabilities_20.html	View
281801	55456	CVE-2007-3304	http://httpd.apache.org/security/vulnerabilities_22.html	View
281802	55456	CVE-2007-3304	[security-announce] 20090820 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server	View
281803	55456	CVE-2007-3304	[apache-httpd-dev] 20070629 Re: [PATCH] pid safety checks for 2.2.x	View
281804	55456	CVE-2007-3304	[apache-httpd-dev] 20070622 Re: PID table changes (was Re: svn commit: r547987 - in /httpd/httpd/trunk)	View
281805	55456	CVE-2007-3304	oval:org.mitre.oval:def:11589	View
281806	55456	CVE-2007-3304	RHSA-2007:0556	View
281807	55456	CVE-2007-3304	GLSA-200711-06	View
281808	55456	CVE-2007-3304	http://security.psnc.pl/files/apache_report.pdf	View
281809	55456	CVE-2007-3304	2814	View
281810	55456	CVE-2007-3304	103179	View
281811	55456	CVE-2007-3304	200032	View
281812	55456	CVE-2007-3304	http://support.avaya.com/elmodocs2/security/ASA-2007-353.htm	View
281813	55456	CVE-2007-3304	http://support.avaya.com/elmodocs2/security/ASA-2007-363.htm	View
281814	55456	CVE-2007-3304	http://svn.apache.org/viewvc?view=rev&revision=547987	View
281815	55456	CVE-2007-3304	PK52702	View
281816	55456	CVE-2007-3304	PK53984	View
281817	55456	CVE-2007-3304	PK50467	View
281818	55456	CVE-2007-3304	http://www.fujitsu.com/global/support/software/security/products-f/interstage-200802e.html	View
281819	55456	CVE-2007-3304	MDKSA-2007:140	View
281820	55456	CVE-2007-3304	MDKSA-2007:142	View
281821	55456	CVE-2007-3304	SUSE-SA:2007:061	View
281822	55456	CVE-2007-3304	FEDORA-2007-2214	View
281823	55456	CVE-2007-3304	RHSA-2007:0532	View
281824	55456	CVE-2007-3304	RHSA-2007:0557	View
281825	55456	CVE-2007-3304	RHSA-2007:0662	View
281826	55456	CVE-2007-3304	RHSA-2008:0261	View
281827	55456	CVE-2007-3304	20070529 Apache httpd vulenrabilities	View
281828	55456	CVE-2007-3304	20070619 Apache Prefork MPM vulnerabilities - Report	View
281829	55456	CVE-2007-3304	20090821 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server	View
281830	55456	CVE-2007-3304	24215	View
281831	55456	CVE-2007-3304	1018304	View
281832	55456	CVE-2007-3304	2007-0026	View
281833	55456	CVE-2007-3304	USN-499-1	View
281834	55456	CVE-2007-3304	ADV-2007-2727	View
281835	55456	CVE-2007-3304	ADV-2007-3100	View
281836	55456	CVE-2007-3304	ADV-2007-3283	View
281837	55456	CVE-2007-3304	ADV-2007-3420	View
281838	55456	CVE-2007-3304	ADV-2007-3494	View
281839	55456	CVE-2007-3304	ADV-2007-4305	View
281840	55456	CVE-2007-3304	ADV-2008-0233	View
281841	55456	CVE-2007-3304	apache-child-process-dos(35095)	View
281842	55456	CVE-2007-3304	https://issues.rpath.com/browse/RPL-1710	View

Related JVN

Id	Name	Title	Summary	Cveinfo Name	Cveinfo Id	Nvdinfo Name	Nvdinfo Id	Cvssv2	Cvssv3	Jvnurl	Published Date	Last Updated Date	Actions
51814	JVNDB-2007-000477	Apache HTTP Server の Prefork MPM モジュールにおけるサービス運用妨害 (DoS) の脆弱性	Apache HTTP Server の Prefork MPM モジュールには、worker_score および process_score 配列を変更することで、システム上の任意のプロセスへ SIGUSR1 シグナルを送信することが可能となり、そのプロセスをサービス運用妨害 (DoS) 状態にされる脆弱性が存在します。	CVE-2007-3304	26659	CVE-2007-3304	55456	4.7		http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000477.html	2007-06-20	2009-02-09	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.36 MB
View render complete	35.30 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.75
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	265.02
Event: Controller.beforeRender	5.79
» Processing toolbar data	5.69
Rendering View	1518.70
» Event: View.beforeRender	0.02
» Rendering APP/View/Nvdinfos/view.ctp	1447.11
» Event: View.afterRender	0.05
» Event: View.beforeLayout	0.03
» Rendering APP/View/Layouts/default.ctp	50.95
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	10.69
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/nvdinfos/view/55456
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/nvdinfos/view/55456
Remote Port	52658
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.148
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.78.197
Http Via	1.1 squid-proxy-5b5d847c96-v2jzj (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	216.73.216.148
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.148
Unique Id	aFs4OZXsFy3UFESTsrRgwgAAAQY
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	216.73.216.148
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.148
Redirect Unique Id	aFs4OZXsFy3UFESTsrRgwgAAAQY
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	216.73.216.148
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.148
Redirect Redirect Unique Id	aFs4OZXsFy3UFESTsrRgwgAAAQY
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1750808633.6253
Request Time	1750808633

NVD

Actions

Related NVD References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files