CVE-2013-1889

Опубликовано: 08 нояб. 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

mod_ruid2 before 0.9.8 improperly handles file descriptors which allows remote attackers to bypass security using a CGI script to break out of the chroot.

Ссылки

http://www.openwall.com/lists/oss-security/2013/03/23/1
Mailing List
Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/83035
Third Party Advisory
VDB Entry
https://security-tracker.debian.org/tracker/CVE-2013-1889
Third Party Advisory
https://sourceforge.net/p/mod-ruid/mailman/mod-ruid-announce/thread/514C503E.4020109%40users.sourceforge.net/
http://www.openwall.com/lists/oss-security/2013/03/23/1
Mailing List
Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/83035
Third Party Advisory
VDB Entry
https://security-tracker.debian.org/tracker/CVE-2013-1889
Third Party Advisory
https://sourceforge.net/p/mod-ruid/mailman/mod-ruid-announce/thread/514C503E.4020109%40users.sourceforge.net/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mod_ruid2_project:mod_ruid2:*:*:*:*:*:apache:*:*

Версия до 0.9.8 (исключая)

EPSS

Процентиль: 69%

0.00591

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2013-1889

CVSS3: 7.5

ubuntu

около 6 лет назад

mod_ruid2 before 0.9.8 improperly handles file descriptors which allows remote attackers to bypass security using a CGI script to break out of the chroot.

CVE-2013-1889

CVSS3: 7.5

debian

около 6 лет назад

mod_ruid2 before 0.9.8 improperly handles file descriptors which allow ...

GHSA-hvmc-jwv7-mpp7

github

почти 4 года назад

mod_ruid2 before 0.9.8 improperly handles file descriptors which allows remote attackers to bypass security using a CGI script to break out of the chroot.

EPSS

Процентиль: 69%

0.00591

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-20