Showing 1 - 4 of 4

CVE-2005-3352

Status Candidate

Overview

Cross-site scripting (XSS) vulnerability in the mod_imap module of Apache httpd before 1.3.35-dev and Apache httpd 2.0.x before 2.0.56-dev allows remote attackers to inject arbitrary web script or HTML via the Referer when using image maps.

Related Files

HP Security Bulletin HPSBOV02683 SSRT090208: Posted May 10, 2011; Authored by HP | Site hp.com; HP Security Bulletin HPSBOV02683 SSRT090208 - Potential vulnerabilities have been identified with HP Secure Web Server (SWS) for OpenVMS running Apache and PHP. The vulnerabilities could be remotely exploited to create a Denial of Service (DoS), unauthorized access, unauthorized disclosure of information, or unauthorized modifications. Revision 1 of this advisory.; tags | advisory, web, denial of service, php, vulnerability; advisories | CVE-2002-0839, CVE-2002-0840, CVE-2003-0542, CVE-2004-0492, CVE-2005-2491, CVE-2005-3352, CVE-2005-3357, CVE-2006-2937, CVE-2006-2940, CVE-2006-3738, CVE-2006-3747, CVE-2006-3918, CVE-2006-4339, CVE-2006-4343, CVE-2007-5000, CVE-2007-6388, CVE-2008-0005, CVE-2009-1891, CVE-2009-3095, CVE-2009-3291, CVE-2009-3292, CVE-2009-3293, CVE-2009-3555, CVE-2010-0010; SHA-256 | a7638da01e18d2a3d9c6e84728556bb08fdb00082b9c904826eb85aa31a5870d; Download | Favorite | View

HP Security Bulletin 2006-12.2: Posted Sep 7, 2006; Authored by Hewlett Packard, HP | Site hp.com; HP Security Bulletin - Potential security vulnerabilities have been identified with Apache running on HP-UX. These vulnerabilities could be exploited remotely to allow execution of arbitrary code, denial of service, or unauthorized access.; tags | advisory, denial of service, arbitrary, vulnerability; systems | hpux; advisories | CVE-2006-3747, CVE-2005-3352, CVE-2005-3357; SHA-256 | b9ab5890e9d10ad4d8db2527868e8497b4d79f5d2d485da41d732ecbb31e0001; Download | Favorite | View

Debian Linux Security Advisory 1167-1: Posted Sep 7, 2006; Authored by Debian | Site debian.org; Debian Security Advisory 1167-1 - Several remote vulnerabilities have been discovered in the Apache, the worlds most popular webserver, which may lead to the execution of arbitrary web scripts. A cross-site scripting (XSS) flaw exists in the mod_imap component of the Apache server. Apache does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which might allow cross-site scripting (XSS) style attacks.; tags | advisory, remote, web, arbitrary, vulnerability, xss; systems | linux, debian; advisories | CVE-2005-3352, CVE-2006-3918; SHA-256 | e2e4e26e8c15671b25c8df4bd7452b838d010fd11f416ec7687a15a0c991a3a9; Download | Favorite | View

SUSE-SA-2006-043.txt: Posted Aug 3, 2006; Site suse.com; SUSE Security Announcement SUSE-SA:2006:043 - The mod_rewrite vulnerability in Apache has been patched.; tags | advisory; systems | linux, suse; advisories | CVE-2005-3352, CVE-2006-3747; SHA-256 | 612fec7dc616174adaec186e91536b7c148d1af486ee736e1e7a7ee25ff29e29; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 293 files
Ubuntu 64 files
Debian 22 files
Gentoo 8 files
Google Security Research 7 files
LiquidWorm 6 files
Apple 5 files
Jann Horn 3 files
Spencer McIntyre 3 files
Milad Karimi 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,175)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,140)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,480)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,022)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

CVE-2005-3352

Overview

Related Files

File Archive:

December 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems