: An attacker with the ability to execute PHP or CGI scripts (low-privileged user www-data ) can escalate to root . Mechanism :
: The nonce generation for Digest authentication was not sufficiently random. apache httpd 2.4.18 exploit
Apache HTTP Server version 2.4.18 is susceptible to critical vulnerabilities, including CVE-2019-0211, which allows local privilege escalation to root, and multiple Denial of Service (DoS) flaws targeting HTTP/2 and module handling. Security advisories urge immediate upgrading to the latest stable release (2.4.60 or later) to mitigate these risks and associated "httpoxy" vulnerabilities. For comprehensive vulnerability details, consult Apache HTTPD: CVE-2019-0211: Use After Free - Rapid7 : An attacker with the ability to execute
This results in a "stream-processing outage," effectively crashing the web service for all other users. 3. Padding Oracle Attack (CVE-2016-0736) Security advisories urge immediate upgrading to the latest
While there isn't one single "silver bullet" exploit for 2.4.18, it is susceptible to several critical flaws that allow for Request Smuggling, Denial of Service (DoS), and Information Disclosure. CVE-2016-8743: Enforcing HTTP Response Correctness
This is one of the most significant issues discovered shortly after the 2.4.18 release. Apache was found to be too lenient in how it parsed HTTP response headers.