CVE-2009-1195

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The Apache HTTP Server 2.2.11 and earlier 2.2 versions does not properly handle Options=IncludesNOEXEC in the AllowOverride directive, which allows local users to gain privileges by configuring (1) Options Includes, (2) Options +Includes, or (3) Options +IncludesNOEXEC in a .htaccess file, and then inserting an exec element in a .shtml file.

References

http://secunia.com/advisories/35264

https://bugzilla.redhat.com/show_bug.cgi?id=489436

http://svn.apache.org/viewvc?view=rev&revision=772997

http://secunia.com/advisories/35261

http://www.redhat.com/support/errata/RHSA-2009-1075.html

http://osvdb.org/54733

http://www.securitytracker.com/id?1022296

http://www.vupen.com/english/advisories/2009/1444

http://marc.info/?l=apache-httpd-dev&m=124048996106302&w=2

http://www.securityfocus.com/bid/35115

http://www.mandriva.com/security/advisories?name=MDVSA-2009:124

http://www.debian.org/security/2009/dsa-1816

http://secunia.com/advisories/35453

http://www.ubuntu.com/usn/usn-787-1

http://secunia.com/advisories/35395

http://www.redhat.com/support/errata/RHSA-2009-1156.html

http://secunia.com/advisories/35721

http://security.gentoo.org/glsa/glsa-200907-04.xml

https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01363.html

http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00006.html

http://secunia.com/advisories/37152

http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html

http://support.apple.com/kb/HT3937

http://www.vupen.com/english/advisories/2009/3184

http://wiki.rpath.com/Advisories:rPSA-2009-0142

http://marc.info/?l=bugtraq&m=129190899612998&w=2

https://exchange.xforce.ibmcloud.com/vulnerabilities/50808

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8704

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12377

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11094

http://www.securityfocus.com/archive/1/507857/100/0/threaded

http://www.securityfocus.com/archive/1/507852/100/0/threaded

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

https://lists.apache.org/thread.html/[email protected]%3Ccvs.httpd.apache.org%3E

Details

Source: MITRE

Published: 2009-05-28

Updated: 2021-06-06

Type: CWE-16

Risk Information

CVSS v2

Base Score: 4.9

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 3.9

Severity: MEDIUM

Tenable Plugins

View all (28 total)

IDNameProductFamilySeverity
67866Oracle Linux 5 : httpd (ELSA-2009-1075)NessusOracle Linux Local Security Checks
medium
60591Scientific Linux Security Update : httpd on SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
49826SuSE 10 Security Update : Apache 2 (ZYPP Patch Number 6572)NessusSuSE Local Security Checks
high
43753CentOS 5 : httpd (CESA-2009:1075)NessusCentOS Local Security Checks
medium
43042Mandriva Linux Security Advisory : apache (MDVSA-2009:323)NessusMandriva Local Security Checks
high
800795Mac OS X 10.6 < 10.6.2 Multiple VulnerabilitiesLog Correlation EngineOperating System Detection
high
5227Mac OS X 10.6 < 10.6.2 Multiple VulnerabilitiesNessus Network MonitorGeneric
critical
42434Mac OS X 10.6.x < 10.6.2 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
42433Mac OS X Multiple Vulnerabilities (Security Update 2009-006)NessusMacOS X Local Security Checks
critical
42319openSUSE 10 Security Update : apache2 (apache2-6576)NessusSuSE Local Security Checks
high
42253SuSE 10 Security Update : Apache 2 (ZYPP Patch Number 6571)NessusSuSE Local Security Checks
high
42252SuSE 11 Security Update : Apache 2 (SAT Patch Number 1417)NessusSuSE Local Security Checks
high
42248openSUSE Security Update : apache2 (apache2-1419)NessusSuSE Local Security Checks
high
42245openSUSE Security Update : apache2 (apache2-1419)NessusSuSE Local Security Checks
high
40833Fedora 11 : httpd-2.2.13-1.fc11 (2009-8812)NessusFedora Local Security Checks
high
40823IBM WebSphere Application Server 7.0 < Fix Pack 5NessusWeb Servers
medium
40760FreeBSD : apache22 -- several vulnerabilities (e15f2356-9139-11de-8f42-001aa0166822)NessusFreeBSD Local Security Checks
high
800567Apache < 2.2.12 Multiple VulnerabilitiesLog Correlation EngineWeb Servers
medium
5111Apache < 2.2.12 Multiple VulnerabilitiesNessus Network MonitorWeb Servers
medium
40459Slackware 12.0 / 12.1 / 12.2 / current : httpd (SSA:2009-214-01)NessusSlackware Local Security Checks
high
40467Apache 2.2.x < 2.2.12 Multiple VulnerabilitiesNessusWeb Servers
high
39775GLSA-200907-04 : Apache: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
39439Debian DSA-1816-1 : apache2 - insufficient security checkNessusDebian Local Security Checks
medium
39371Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : apache2 vulnerabilities (USN-787-1)NessusUbuntu Local Security Checks
high
39357MDVA-2009:095 : apacheNessusMandriva Local Security Checks
medium
39761Mandriva Linux Security Advisory : apache (MDVSA-2009:124-1)NessusMandriva Local Security Checks
medium
38945RHEL 5 : httpd (RHSA-2009:1075)NessusRed Hat Local Security Checks
medium
4579Apache < 2.2.9 Multiple VulnerabilitiesNessus Network MonitorWeb Servers
high