CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-4443

Monkey HTTP Daemon 0.9.3 uses a real UID of root and a real GID of root during execution of CGI scripts, which might allow local users to gain privileges by leveraging cgi-bin write access.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.8%

CVSS Severity

CVSS v2 Score 6.9

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688008
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688879
http://www.openwall.com/lists/oss-security/2012/09/21/10
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688008
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688879
http://www.openwall.com/lists/oss-security/2012/09/21/10

Products affected by CVE-2012-4443

Monkey-Project » Monkey » Version: 0.9.3

cpe:2.3:a:monkey-project:monkey:0.9.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-4443

Products

Pricing

Contact Us