Computer Security
[EN] securityvulns.ru no-pyccku


mod-wsgi security vulnerabilities
Published:29.05.2014
Source:
SecurityVulns ID:13787
Type:remote
Threat Level:
5/10
Description:Privilege escalation, information disclosure.
Affected:APACHE : mod_wsgi 4.5
CVE:CVE-2014-0242
 CVE-2014-0240 (The mod_wsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid when run on certain Linux kernels, which allows local users to gain privileges via vectors related to the number of running processes.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2937-1] mod-wsgi security update (29.05.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod