6.9
CVSSv2

CVE-2012-0883

Published: 18/04/2012 Updated: 21/11/2024

Vulnerability Summary

envvars (aka envvars-std) in the Apache HTTP Server prior to 2.4.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse DSO in the current working directory during execution of apachectl.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache http server

apache http server 2.4.1

opensuse opensuse 11.4

opensuse opensuse 12.1

Vendor Advisories

Synopsis Important: JBoss Enterprise Application Platform 601 update Type/Severity Security Advisory: Important Topic JBoss Enterprise Application Platform 601, which fixes multiple securityissues, various bugs, and adds enhancements, is now available from the RedHat Customer PortalThe Red Hat Security ...