Detections
Analytics
Apache 2.4.x < 2.4.2 'LD_LIBRARY_PATH' Insecure Library Loading
high Web App Scanning Plugin ID 98900
Language:
Synopsis
Apache 2.4.x < 2.4.2 'LD_LIBRARY_PATH' Insecure Library LoadingDescription
According to its banner, the version of Apache 2.4.x running on the remote host is prior to 2.4.2. It is, therefore, potentially affected by an insecure library loading issue.The utility 'apachectl' can receive a zero-length directory name in the LD_LIBRARY_PATH via the 'envvars' file. A local attacker with access to that utility could exploit this to load a malicious Dynamic Shared Object (DSO), leading to arbitrary code execution.
Note that the scanner did not actually test for this flaw, but instead has relied on the version in the server's banner.
Solution
Upgrade to Apache version 2.4.2 or later.See Also
http://svn.apache.org/viewvc?view=revision&revision=1296428
https://archive.apache.org/dist/httpd/CHANGES_2.4.2
https://httpd.apache.org/security/vulnerabilities_24.html#2.4.2
Plugin Details
Severity: High
ID: 98900
Type: remote
Family: Component Vulnerability
Published: 1/9/2019
Updated: 3/14/2023
Scan Template: api, basic, full, pci, scan
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 6.9
Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2012-0883
CVSS v3
Risk Factor: High
Base Score: 7.8
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS Score Source: CVE-2012-0883
Vulnerability Information
CPE: cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 4/18/2012
Vulnerability Publication Date: 4/18/2012
Reference Information
CVE: CVE-2012-0883
BID: 53046
CWE: 264
OWASP: 2010-A8, 2013-A7, 2013-A9, 2017-A5, 2017-A9, 2021-A1, 2021-A6
WASC: Insufficient Authorization
DISA STIG: APSC-DV-002630
HIPAA: 164.306(a)(1), 164.306(a)(2)
ISO: 27001-A.14.2.5
NIST: sp800_53-CM-6b
OWASP API: 2019-API7, 2023-API8
OWASP ASVS: 4.0.2-14.2.1
PCI-DSS: 3.2-6.2