In certain conditions, it allows implementing side code which gives rights of administrator and capturing server management.
Charles Fol published PoC-code on GitHub website.
In the accompanying comments engineer explained that code has intermediate meaning between demonstrative PoC and valid exploit and has educational purposes. However, intruders can create full-scale exploit on the base of this code.
Charles Fol recommends shared web-hosting services administrators to install Apache HTTP Server v.2.4.39 version as it eliminates described vulnerability.
CVE-2019-0211 involves only Unix-version of Apache HTTP Server. Debian, SuSE, Ubuntu and cPanel developers have already launched corrective updates. For FreeBSD was published notification though patch is still not available.
Source: https://hackernews.blog/poc-code-published-for-apache-http-server-vulnerability/
About News-bhexusa.xyz News-bhexusa.xyz pop-ups can not open out of nowhere. If you have clicked on…
About News-bhupotu.xyz News-bhupotu.xyz pop-ups can not launch out of the blue. If you have clicked…
About News-bhocime.info News-bhocime.info pop-ups can not open out of the blue. If you have actually…
About You-hub.online You-hub.online pop-ups can not launch out of nowhere. If you have clicked on…
About News-bhecudu.live News-bhecudu.live pop-ups can not introduce out of the blue. If you have clicked…
About News-bhiciwe.today News-bhiciwe.today pop-ups can not introduce out of the blue. If you have clicked…