Updated apache-mod_wsgi package fixes security vulnerability :

It was discovered that mod_wsgi incorrectly handled errors when setting up the working directory and group access rights. A malicious application could possibly use this issue to cause a local privilege escalation when using daemon mode (CVE-2014-8583).

According to the version of the mod_wsgi package installed, the EulerOS installation on the remote host is affected by the following vulnerability :

  - mod_wsgi before 4.2.4 for Apache, when creating a     daemon process group, does not properly handle when     group privileges cannot be dropped, which might allow     attackers to gain privileges via unspecified     vectors.(CVE-2014-8583)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Failure to handle errors when attempting to drop group privileges :

mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors. (CVE-2014-8583)

apache2-mod_wsgi was updated to fix one security issue.

This security issue was fixed :

  - Failure to handle errors when attempting to drop group     privileges (CVE-2014-8583).

Updated apache-mod_wsgi package fixes security vulnerabilities :

apache-mod_wsgi before 4.2.4 contained an off-by-one error in applying a limit to the number of supplementary groups allowed for a daemon process group. The result could be that if more groups than the operating system allowed were specified to the option supplementary-groups, then memory corruption or a process crash could occur.

It was discovered that mod_wsgi incorrectly handled errors when setting up the working directory and group access rights. A malicious application could possibly use this issue to cause a local privilege escalation when using daemon mode (CVE-2014-8583).

According to the web server banner, the version of mod_wsgi running on the remote host is prior to version 4.2.4. It is, therefore, affected by a privilege escalation vulnerability.

The issue is triggered when attempting to drop group privileges and an error with 'setgid', 'setgroups', and 'initgroups' occurs. The error is reported, but mod_wsgi continues to run with root group privileges, rather than dropping privileges as intended. A local attacker could potentially gain escalated privileges.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote host is affected by the vulnerability described in GLSA-201612-49 (mod_wsgi: Privilege escalation)

    mod_wsgi, when creating a daemon process group, does not properly handle       dropping group privileges.
  Impact :

    Context-dependent attackers could escalate privileges due to the       improper handling of group privileges.
  Workaround :

    There is no known workaround at this time.

Failure to handle errors when attempting to drop group privileges

mod_wsgi before 4.2.4 for Apache, when creating a daemon process group, does not properly handle when group privileges cannot be dropped, which might allow attackers to gain privileges via unspecified vectors. (CVE-2014-8583)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2431-1 advisory.

    It was discovered that mod_wsgi incorrectly handled errors when setting up the working directory and group     access rights. A malicious application could possibly use this issue to cause a local privilege escalation     when using daemon mode.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Published	Updated	Severity
80042	Mandriva Linux Security Advisory : apache-mod_wsgi (MDVSA-2014:253)	Nessus	Mandriva Local Security Checks	12/16/2014	1/6/2021	medium
132168	EulerOS 2.0 SP3 : mod_wsgi (EulerOS-SA-2019-2633)	Nessus	Huawei Local Security Checks	12/18/2019	4/3/2024	medium
109140	Amazon Linux 2 : mod_wsgi (ALAS-2018-987)	Nessus	Amazon Linux Local Security Checks	4/18/2018	10/30/2024	medium
131859	EulerOS 2.0 SP2 : mod_wsgi (EulerOS-SA-2019-2367)	Nessus	Huawei Local Security Checks	12/10/2019	4/4/2024	medium
132378	EulerOS 2.0 SP5 : mod_wsgi (EulerOS-SA-2019-2711)	Nessus	Huawei Local Security Checks	12/23/2019	4/2/2024	medium
79815	openSUSE Security Update : apache2-mod_wsgi (openSUSE-SU-2014:1590-1)	Nessus	SuSE Local Security Checks	12/9/2014	1/19/2021	medium
82455	Mandriva Linux Security Advisory : apache-mod_wsgi (MDVSA-2015:180)	Nessus	Mandriva Local Security Checks	3/31/2015	1/14/2021	medium
76498	Apache mod_wsgi < 4.2.4 Privilege Dropping Privilege Escalation	Nessus	Web Servers	7/14/2014	11/26/2019	high
96224	GLSA-201612-49 : mod_wsgi: Privilege escalation	Nessus	Gentoo Local Security Checks	1/3/2017	1/11/2021	medium
109369	Amazon Linux AMI : mod24_wsgi (ALAS-2018-987)	Nessus	Amazon Linux Local Security Checks	4/27/2018	10/22/2024	medium
79717	Ubuntu 14.04 LTS : mod_wsgi vulnerability (USN-2431-1)	Nessus	Ubuntu Local Security Checks	12/4/2014	8/27/2024	high

Detections

Analytics

Plugins Search

medium

medium

medium

medium

medium

medium

medium

high

medium

medium

high