CVE Identifier: CVE-2007-3304 CVE Bugzilla ID: 245111 Bug Title: httpd scoreboard lack of PID protection Reported Date: 2007-06-21 07:47 UTC Fixed In Version: httpd 1.3.39 Last Closed: 2008-01-14 16:32:15 UTC Status: CLOSED ERRATA Description: - Affected Versions: httpd 1.3.37, 2.0.59, 2.2.4 with Prefork MPM module - Issue: Local users can cause a denial of service by modifying worker_score and process_score arrays to reference an arbitrary PID, leading the master process to send a SIGUSR1 signal. - Fix: Upstream fix referenced in the comment. Requires local user capability to run scripts (php, cgi) to exploit. - Mitigation: Only affects httpd 1.3.x and 2.2.x, not 2.0.x. Links to Errata Addresses: - Red Hat Application Stack: RHSA-2007-0557 - Red Hat Enterprise Linux: RHSA-2007-0532, RHSA-2007-0662, RHSA-2007-0556 - Fedora: Fedora-2007-704 - Red Hat Certificate System 7.3: RHSA-2010-0602