CVE-2009-1195

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions 2.2.11 and earlier 2.2 versions

Description The issue arises from the improper handling of Options=IncludesNOEXEC in the AllowOverride directive, allowing local users to gain privileges. This can be achieved by configuring certain options in a .htaccess file and then inserting an exec element in a .shtml file. The flaw affects configurations using the AllowOverride directive with specific Options arguments, enabling local users to execute commands from a Server-Side-Include script.

Recommendations For Apache HTTP Server versions 2.2.11 and earlier 2.2 versions, consider disabling the use of Options Includes, Options +Includes, or Options +IncludesNOEXEC in .htaccess files as a temporary workaround until a patch is available. Restrict access to the AllowOverride directive to minimize the risk of exploitation. Avoid using the exec element in .shtml files until the issue is resolved.