CVE-2014-0226

Apache HTTP Server <2.4.10 - RCE

Title source: llm

Description

Race condition in the mod_status module in the Apache HTTP Server before 2.4.10 allows remote attackers to cause a denial of service (heap-based buffer overflow), or possibly obtain sensitive credential information or execute arbitrary code, via a crafted request that triggers improper scoreboard handling within the status_handler function in modules/generators/mod_status.c and the lua_ap_scoreboard_worker function in modules/lua/lua_request.c.

Exploits (2)

exploitdb WRITEUP

by Marek Kroemeke · textdoslinux

https://www.exploit-db.com/exploits/34133

View Code ZIP pw:eip

nomisec WORKING POC

by shreesh1 · poc

https://github.com/shreesh1/CVE-2014-0226-poc

View Code ZIP pw:eip

References (53)

[Third Party Advisory] http://advisories.mageia.org/MGASA-2014-0304.html

[Third Party Advisory] http://advisories.mageia.org/MGASA-2014-0305.html

[Patch, Vendor Advisory] http://httpd.apache.org/security/vulnerabilities_24.html

[Broken Link, Mailing List] http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html

[Issue Tracking, Mailing List, Third Party Advisory] http://marc.info/?l=bugtraq&m=143403519711434&w=2

[Issue Tracking, Mailing List, Third Party Advisory] http://marc.info/?l=bugtraq&m=143748090628601&w=2

[Issue Tracking, Mailing List, Third Party Advisory] http://marc.info/?l=bugtraq&m=144050155601375&w=2

[Issue Tracking, Mailing List, Third Party Advisory] http://marc.info/?l=bugtraq&m=144493176821532&w=2

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2014-1019.html

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2014-1020.html

[Broken Link] http://rhn.redhat.com/errata/RHSA-2014-1021.html

[Exploit, Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2014/Jul/114

[Not Applicable] http://secunia.com/advisories/60536

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-201408-12.xml

[Vendor Advisory] http://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x/CHANGES

[Vendor Advisory] http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/generators/mod_status.c

[Patch, Vendor Advisory] http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/generators/mod_status.c?r1=1450998&r2=1610491&diff_format=h

[Vendor Advisory] http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/lua/lua_request.c

[Patch, Vendor Advisory] http://svn.apache.org/viewvc/httpd/httpd/trunk/modules/lua/lua_request.c?r1=1588989&r2=1610491&diff_format=h

[Third Party Advisory] http://www.debian.org/security/2014/dsa-2989

... and 33 more

Scores

EPSS 0.7544

EPSS Percentile 98.9%

Details

CWE

CWE-362

Status published

Products (15)

apache/http_server 2.2.0 - 2.2.29

debian/debian_linux 7.0

debian/debian_linux 8.0

oracle/enterprise_manager_ops_center 11.1.3

oracle/enterprise_manager_ops_center 12.1.4

oracle/http_server 10.1.3.5.0

oracle/http_server 11.1.1.7.0

oracle/http_server 12.1.2.0

oracle/http_server 12.1.3.0

oracle/secure_global_desktop 4.63

... and 5 more

Published Jul 20, 2014

Tracked Since Feb 18, 2026