CVE-2002-0839 in HTTP Serverinfo

Summary

The shared memory scoreboard in the HTTP daemon for Apache 1.3.x before 1.3.27 allows any user running as the Apache UID to send a SIGUSR1 signal to any process as root, resulting in a denial of service (process kill) or possibly other behaviors that would not normally be allowed, by modifying the parent[].pid and parent[].last_rtime segments in the scoreboard.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Disclosure

10/11/2002

Moderation

VulDB entry created

Entries

1: VDB-19050

CPE

ready

CWE

CWE-404 (Confirmed)

CVSS

4.0

EPSS

0.00141

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0839
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0839
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0839/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!