CVE-2006-1079
Severity CVSS v4.0:
Pending analysis
Type:
CWE-264
Permissions, Privileges, and Access Control
Publication date:
09/03/2006
Last modified:
03/04/2025
Description
htpasswd, as used in Acme thttpd 2.25b and possibly other products such as Apache, might allow local users to gain privileges via shell metacharacters in a command line argument, which is used in a call to the system function. NOTE: since htpasswd is normally installed as a non-setuid program, and the exploit is through command line options, perhaps this issue should not be included in CVE. However, if there are some typical or recommended configurations that use htpasswd with sudo privileges, or common products that access htpasswd remotely, then perhaps it should be included.
Impact
Base Score 2.0
7.20
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:acme_labs:thttpd:2.25b:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://marc.info/?l=thttpd&m=114153031201867&w=2
- http://marc.info/?l=thttpd&m=114154083000296&w=2
- http://packetstormsecurity.com/files/175949/m-privacy-TightGate-Pro-Code-Execution-Insecure-Permissions.html
- http://seclists.org/fulldisclosure/2023/Nov/13
- http://www.osvdb.org/23828
- http://www.securityfocus.com/archive/1/426823/100/0/threaded
- http://www.securityfocus.com/bid/16972
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25217
- http://marc.info/?l=thttpd&m=114153031201867&w=2
- http://marc.info/?l=thttpd&m=114154083000296&w=2
- http://packetstormsecurity.com/files/175949/m-privacy-TightGate-Pro-Code-Execution-Insecure-Permissions.html
- http://seclists.org/fulldisclosure/2023/Nov/13
- http://www.osvdb.org/23828
- http://www.securityfocus.com/archive/1/426823/100/0/threaded
- http://www.securityfocus.com/bid/16972
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25217