CVE Vulnerabilities

CVE-2007-3304

Published: Jun 20, 2007 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.7 MEDIUM
AV:L/AC:M/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the worker_score and process_score arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka SIGUSR1 killer.

Affected Software

Name Vendor Start Version End Version
Http_server Apache 1.3.0 (including) 1.3.39 (excluding)
Http_server Apache 2.0.0 (including) 2.0.61 (excluding)
Http_server Apache 2.2.0 (including) 2.2.6 (excluding)
Red Hat Certificate System 7.3 RedHat ant-0:1.6.5-1jpp_1rh *
Red Hat Certificate System 7.3 RedHat avalon-logkit-0:1.2-2jpp_4rh *
Red Hat Certificate System 7.3 RedHat axis-0:1.2.1-1jpp_3rh *
Red Hat Certificate System 7.3 RedHat classpathx-jaf-0:1.0-2jpp_6rh *
Red Hat Certificate System 7.3 RedHat classpathx-mail-0:1.1.1-2jpp_8rh *
Red Hat Certificate System 7.3 RedHat geronimo-specs-0:1.0-0.M4.1jpp_10rh *
Red Hat Certificate System 7.3 RedHat jakarta-commons-modeler-0:2.0-3jpp_2rh *
Red Hat Certificate System 7.3 RedHat log4j-0:1.2.12-1jpp_1rh *
Red Hat Certificate System 7.3 RedHat mx4j-1:3.0.1-1jpp_4rh *
Red Hat Certificate System 7.3 RedHat pcsc-lite-0:1.3.3-3.el4 *
Red Hat Certificate System 7.3 RedHat rhpki-ca-0:7.3.0-20.el4 *
Red Hat Certificate System 7.3 RedHat rhpki-java-tools-0:7.3.0-10.el4 *
Red Hat Certificate System 7.3 RedHat rhpki-kra-0:7.3.0-14.el4 *
Red Hat Certificate System 7.3 RedHat rhpki-manage-0:7.3.0-19.el4 *
Red Hat Certificate System 7.3 RedHat rhpki-native-tools-0:7.3.0-6.el4 *
Red Hat Certificate System 7.3 RedHat rhpki-ocsp-0:7.3.0-13.el4 *
Red Hat Certificate System 7.3 RedHat rhpki-tks-0:7.3.0-13.el4 *
Red Hat Certificate System 7.3 RedHat tomcat5-0:5.5.23-0jpp_4rh.16 *
Red Hat Certificate System 7.3 RedHat xerces-j2-0:2.7.1-1jpp_1rh *
Red Hat Certificate System 7.3 RedHat xml-commons-0:1.3.02-2jpp_1rh *
Red Hat Enterprise Linux 2.1 RedHat apache-0:1.3.27-12.ent *
Red Hat Enterprise Linux 3 RedHat httpd-0:2.0.46-68.ent *
Red Hat Enterprise Linux 4 RedHat httpd-0:2.0.52-32.3.ent *
Red Hat Enterprise Linux 5 RedHat httpd-0:2.2.3-7.el5 *
Red Hat Network Proxy v 4.2 (RHEL 3) RedHat jabberd-0:2.0s10-3.37.rhn *
Red Hat Network Proxy v 4.2 (RHEL 3) RedHat rhn-apache-0:1.3.27-36.rhn.rhel3 *
Red Hat Network Proxy v 4.2 (RHEL 3) RedHat rhn-modperl-0:1.29-16.rhel3 *
Red Hat Network Proxy v 4.2 (RHEL 4) RedHat jabberd-0:2.0s10-3.38.rhn *
Red Hat Network Proxy v 4.2 (RHEL 4) RedHat rhn-apache-0:1.3.27-36.rhn.rhel4 *
Red Hat Network Proxy v 4.2 (RHEL 4) RedHat rhn-modperl-0:1.29-16.rhel4 *
Red Hat Network Proxy v 5.0 RedHat jabberd-0:2.0s10-3.38.rhn *
Red Hat Network Proxy v 5.0 RedHat rhn-apache-0:1.3.27-36.rhn.rhel4 *
Red Hat Network Proxy v 5.0 RedHat rhn-modperl-0:1.29-16.rhel4 *
Red Hat Network Satellite Server v 4.2 RedHat jabberd-0:2.0s10-3.38.rhn *
Red Hat Network Satellite Server v 4.2 RedHat java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el4 *
Red Hat Network Satellite Server v 4.2 RedHat jfreechart-0:0.9.20-3.rhn *
Red Hat Network Satellite Server v 4.2 RedHat openmotif21-0:2.1.30-11.RHEL4.6 *
Red Hat Network Satellite Server v 4.2 RedHat perl-Crypt-CBC-0:2.24-1.el4 *
Red Hat Network Satellite Server v 4.2 RedHat rhn-apache-0:1.3.27-36.rhn.rhel4 *
Red Hat Network Satellite Server v 4.2 RedHat rhn-modjk-0:1.2.23-2rhn.rhel4 *
Red Hat Network Satellite Server v 4.2 RedHat rhn-modperl-0:1.29-16.rhel4 *
Red Hat Network Satellite Server v 4.2 RedHat rhn-modssl-0:2.8.12-8.rhn.10.rhel4 *
Red Hat Network Satellite Server v 4.2 RedHat tomcat5-0:5.0.30-0jpp_10rh *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat jabberd-0:2.0s10-3.37.rhn *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat jfreechart-0:0.9.20-3.rhn *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat openmotif21-0:2.1.30-9.RHEL3.8 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat perl-Crypt-CBC-0:2.24-1.el3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat rhn-apache-0:1.3.27-36.rhn.rhel3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat rhn-modjk-0:1.2.23-2rhn.rhel3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat rhn-modperl-0:1.29-16.rhel3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat rhn-modssl-0:2.8.12-8.rhn.10.rhel3 *
Red Hat Network Satellite Server v 4.2 (RHEL3) RedHat tomcat5-0:5.0.30-0jpp_10rh *
Red Hat Network Satellite Server v 5.0 RedHat jabberd-0:2.0s10-3.38.rhn *
Red Hat Network Satellite Server v 5.0 RedHat java-1.4.2-ibm-0:1.4.2.10-1jpp.2.el4 *
Red Hat Network Satellite Server v 5.0 RedHat jfreechart-0:0.9.20-3.rhn *
Red Hat Network Satellite Server v 5.0 RedHat openmotif21-0:2.1.30-11.RHEL4.6 *
Red Hat Network Satellite Server v 5.0 RedHat perl-Crypt-CBC-0:2.24-1.el4 *
Red Hat Network Satellite Server v 5.0 RedHat rhn-apache-0:1.3.27-36.rhn.rhel4 *
Red Hat Network Satellite Server v 5.0 RedHat rhn-modjk-0:1.2.23-2rhn.rhel4 *
Red Hat Network Satellite Server v 5.0 RedHat rhn-modperl-0:1.29-16.rhel4 *
Red Hat Network Satellite Server v 5.0 RedHat rhn-modssl-0:2.8.12-8.rhn.10.rhel4 *
Red Hat Network Satellite Server v 5.0 RedHat tomcat5-0:5.0.30-0jpp_10rh *
Red Hat Web Application Stack for RHEL 4 RedHat httpd-0:2.0.59-1.el4s1.7 *
Apache2 Ubuntu dapper *
Apache2 Ubuntu devel *
Apache2 Ubuntu edgy *
Apache2 Ubuntu feisty *

References