Vulnerabilities

CVE-2012-0883

by Fred · 18/04/2012

envvars (aka envvars-std) in the Apache HTTP Server before 2.4.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse DSO in the current working directory during execution of apachectl.

Date published : 2012-04-18

http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html

http://www.securityfocus.com/bid/53046

Similar

Tags: Cybersecurity Alert