CVE-2006-7098

Summary

CVE	CVE-2006-7098
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2007-03-03 19:19:00 UTC
Updated	2017-07-29 01:29:00 UTC
Description	The Debian GNU/Linux 033_-F_NO_SETSID patch for the Apache HTTP Server 1.3.34-4 does not properly disassociate httpd from a controlling tty when httpd is started interactively, which allows local users to gain privileges to that tty via a CGI program that calls the TIOCSTI ioctl.

Risk And Classification

Problem Types: CWE-264

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Debian	Apache	1.3.34.4	All	All	All
Application	Debian	Apache	1.3.34.4	All	All	All

References

Reference	Source	Link	Tags
33816	OSVDB	osvdb.org
20070226 Local user to root escalation in apache 1.3.34 (Debian only)	FULLDISC	archives.neohapsis.com
IBM X-Force Exchange	XF	exchange.xforce.ibmcloud.com
#357561 - use setsid() to detach from controlling tty - Debian Bug report logs	CONFIRM	bugs.debian.org
Debian Apache Privilege Escalation - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
Debian Apache Root Shell Local Privilege Escalation Vulnerabilities	BID	www.securityfocus.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

Vendor Comments And Credit

Organization	Published	Contributor	Statement
Apache	2008-07-02	Mark J Cox	This issue did not affect the upstream Apache HTTP Server versions.
Red Hat	2007-03-05	Mark J Cox	Not vulnerable. This issue was specific to a Debian patch to Apache HTTP Server.

There are currently no legacy QID mappings associated with this CVE.