Vulnerability Name:

CCN-10575

Published:2002-11-06
Updated:2002-11-06
Summary:A vulnerability in the mod_php module for Apache HTTP Server could allow a remote attacker to hijack TCP port 80 and take over the httpd process. This could occur if the attacker has permissions to execute external programs and the safe_mode option is disabled. A remote attacker who has exploited this vulnerability could bind a malicious Web server to port 80 of the Apache HTTP Server, which would cause users to be redirected to the malicious Web server when attempting to connect to the vulnerable Apache server.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Consequences:Bypass Security
References:Source: CCN
Type: Georgi Guninski Security Advisory #58, 2002
Fun with mod_php/Apache 1.3, yet Apache much better than II$

Source: CCN
Type: EnGarde Secure Linux Security Advisory ESA-20021213-033
Several MySQL vulnerabilities

Source: CCN
Type: BID-6117
Apache mod_php File Descriptor Leakage Vulnerability

Source: XF
Type: UNKNOWN
apache-modphp-process-hijack(10575)

Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:apache:http_server:1.3.26:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    apache http server 1.3.26