CVE-2012-4443

Опубликовано: 05 окт. 2012

Источник: nvd

CVSS2: 6.9

EPSS Низкий

Описание

Monkey HTTP Daemon 0.9.3 uses a real UID of root and a real GID of root during execution of CGI scripts, which might allow local users to gain privileges by leveraging cgi-bin write access.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:monkey-project:monkey:0.9.3:*:*:*:*:*:*:*

EPSS

Процентиль: 17%

0.00054

Низкий

6.9 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2012-4443

ubuntu

больше 13 лет назад

Monkey HTTP Daemon 0.9.3 uses a real UID of root and a real GID of root during execution of CGI scripts, which might allow local users to gain privileges by leveraging cgi-bin write access.

CVE-2012-4443

debian

больше 13 лет назад

Monkey HTTP Daemon 0.9.3 uses a real UID of root and a real GID of roo ...

GHSA-4ggc-896w-79rc

github

больше 3 лет назад

Monkey HTTP Daemon 0.9.3 uses a real UID of root and a real GID of root during execution of CGI scripts, which might allow local users to gain privileges by leveraging cgi-bin write access.

EPSS

Процентиль: 17%

0.00054

Низкий

6.9 Medium

CVSS2

Дефекты

CWE-264