CVE-2013-1048

The Debian apache2ctl script in the apache2 package squeeze before 2.2.16-6+squeeze11, wheezy before 2.2.22-13, and sid before 2.2.22-13 for the Apache HTTP Server on Debian GNU/Linux does not properly create the /var/lock/apache2 lock directory, which allows local users to gain privileges via an unspecified symlink attack.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:debian:apache2:*:squeeze10:*:*:*:*:*:*
cpe:2.3:a:debian:apache2:*:sid:*:*:*:*:*:*
cpe:2.3:a:debian:apache2:*:wheezy:*:*:*:*:*:*

Information

Published : 2013-03-06 05:10

Updated : 2013-03-06 08:50


NVD link : CVE-2013-1048

Mitre link : CVE-2013-1048


JSON object : View

CWE
CWE-264

Permissions, Privileges, and Access Controls

Advertisement

dedicated server usa

Products Affected

debian

  • apache2