CVE-2012-0031

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions 2.2.21 and earlier

Description The issue allows local users to cause a denial of service, potentially leading to a daemon crash during shutdown, by modifying a certain type field within a scoreboard shared memory segment. This modification results in an invalid call to the free function. An unprivileged child process could cause the parent process to crash at shutdown rather than terminate cleanly.

Recommendations For Apache HTTP Server versions 2.2.21 and earlier, update to a version later than 2.2.21 to resolve the issue. As a temporary workaround, consider restricting access to the scoreboard shared memory segment to minimize the risk of exploitation.