CVE-2011-1176
First published: Tue Mar 29 2011(Updated: )
The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration sections that specify NiceValue but not AssignUserID, which might allow remote attackers to gain privileges by leveraging the root uid and root gid of an mpm-itk process.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Debian Linux | =5.0 | |
| Debian Linux | =7.0 | |
| Debian Linux | =6.0 | |
| mpm-itk | =2.2.11-01 | |
| mpm-itk | =2.2.11-02 | |
| Apache Http Server |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://openwall.com/lists/oss-security/2011/03/20/1
- http://www.securityfocus.com/bid/46953
- http://openwall.com/lists/oss-security/2011/03/21/13
- http://www.vupen.com/english/advisories/2011/0749
- http://lists.err.no/pipermail/mpm-itk/2011-March/000393.html
- http://www.debian.org/security/2011/dsa-2202
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=618857
- http://lists.err.no/pipermail/mpm-itk/2011-March/000394.html
- http://www.vupen.com/english/advisories/2011/0748
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:057
- http://www.vupen.com/english/advisories/2011/0824
- https://exchange.xforce.ibmcloud.com/vulnerabilities/66248
Frequently Asked Questions
What is the severity of CVE-2011-1176?
CVE-2011-1176 has a moderate severity rating as it allows remote attackers to gain privileges under specific conditions.
How do I fix CVE-2011-1176?
To fix CVE-2011-1176, ensure that the AssignUserID directive is properly configured alongside NiceValue in your Apache HTTP Server configuration.
What versions are affected by CVE-2011-1176?
CVE-2011-1176 affects mpm-itk versions 2.2.11-01 and 2.2.11-02, as well as certain versions of Debian Linux 5.0, 6.0, and 7.0.
Can CVE-2011-1176 lead to potential exploit scenarios?
Yes, if misconfigured, CVE-2011-1176 can allow unauthorized privilege escalation, making it a potential exploit risk.
Is CVE-2011-1176 specific to a particular server software?
CVE-2011-1176 specifically impacts the mpm-itk Multi-Processing Module used with the Apache HTTP Server.
- agent/references
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/debian
- canonical/debian linux
- version/debian linux/5.0
- version/debian linux/7.0
- version/debian linux/6.0
- vendor/mpm-itk project
- canonical/mpm-itk
- version/mpm-itk/2.2.11-01
- version/mpm-itk/2.2.11-02
- vendor/apache
- canonical/apache http server