VULHUB ™

Apache is a freely available webserver for Unix and Linux variants, as well as Microsoft operating systems. A vulnerability in the handling of the Apache scorecard has been reported. A user with the privileges of the Apache user could attach to an httpd process, and overwrite the parent[].pid and parent[].last_rtime shared memory segments. By overwriting these, a signal may be sent to an arbitrary process with administrative privileges.

Apache is a freely available webserver for Unix and Linux variants, as well as Microsoft operating systems. A vulnerability in the handling of the Apache scorecard has been reported. A user with the privileges of the Apache user could attach to an httpd process, and overwrite the parent[].pid and parent[].last_rtime shared memory segments. By overwriting these, a signal may be sent to an arbitrary process with administrative privileges.