Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-4558HistoryFeb 26, 2013 - 4:55 p.m.
CVE-2012-4558
2013-02-2616:55:00
Debian Security Bug Tracker
security-tracker.debian.org
16
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.218 Low
EPSS
Percentile
96.4%
Multiple cross-site scripting (XSS) vulnerabilities in the balancer_handler function in the manager interface in mod_proxy_balancer.c in the mod_proxy_balancer module in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via a crafted string.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | apache2 | < 2.2.22-13 | apache2_2.2.22-13_all.deb |
| Debian | 11 | all | apache2 | < 2.2.22-13 | apache2_2.2.22-13_all.deb |
| Debian | 10 | all | apache2 | < 2.2.22-13 | apache2_2.2.22-13_all.deb |
| Debian | 999 | all | apache2 | < 2.2.22-13 | apache2_2.2.22-13_all.deb |
| Debian | 13 | all | apache2 | < 2.2.22-13 | apache2_2.2.22-13_all.deb |
Related
prion
prion
Cross site scripting
2013-02-26 16:55:00
seebug
seebug
Apache HTTP Server balancer_handler函数跨站脚本漏洞(CVE-2012-4558)
2013-02-28 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache HTTPD mod_proxy_balancer Cross Site Scripting (CVE-2012-4558)
2013-03-24 00:00:00
f5
f5
K15865 : Apache HTTP server vulnerability CVE-2012-4558
2014-12-09 00:00:00
SOL15865 - Apache HTTP server vulnerability CVE-2012-4558
2014-11-25 00:00:00
httpd
httpd
Apache Httpd < 2.4.4 : XSS in mod_proxy_balancer
2012-10-07 00:00:00
Apache Httpd < 2.2.24 : XSS in mod_proxy_balancer
2012-10-07 00:00:00
cve
cve
CVE-2012-4558
2013-02-26 16:55:00
nessus
nessus
SuSE 11.2 Security Update : Apache (SAT Patch Number 7570)
2013-04-10 00:00:00
SuSE 10 Security Update : Apache (ZYPP Patch Number 8530)
2013-04-10 00:00:00
Amazon Linux AMI : httpd24 (ALAS-2013-175)
2013-09-04 00:00:00
openvas
openvas
Fedora Update for httpd FEDORA-2013-4541
2013-04-02 00:00:00
Amazon Linux: Security Advisory (ALAS-2013-175)
2015-09-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:0648-1)
2021-06-09 00:00:00
freebsd
freebsd
apache22 -- several vulnerabilities
2012-10-07 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: httpd-2.4.4-2.fc18
2013-04-01 03:30:25
amazon
amazon
Medium: httpd24
2013-03-26 21:29:00
Medium: httpd
2013-03-26 21:25:00
Medium: httpd24
2013-05-24 13:57:00
ubuntucve
ubuntucve
CVE-2012-4558
2013-02-26 00:00:00
securityvulns
securityvulns
[ MDVSA-2013:015 ] apache
2013-03-02 00:00:00
Apache security vulnerabilities
2013-03-02 00:00:00
slackware
slackware
httpd
2013-03-03 15:02:33
oraclelinux
oraclelinux
httpd security update
2013-05-13 00:00:00
debian
debian
[SECURITY] [DSA 2637-1] apache2 security update
2013-03-04 21:34:32
[SECURITY] [DSA 2637-1] apache2 security update
2013-03-04 21:34:32
redhat
redhat
(RHSA-2013:0815) Moderate: httpd security update
2013-05-13 00:00:00
(RHSA-2013:1011) Moderate: Red Hat JBoss Web Server 2.0.1 update
2013-07-03 00:00:00
(RHSA-2013:1012) Moderate: Red Hat JBoss Web Server 2.0.1 update
2013-07-03 15:40:17
veracode
veracode
Arbitrary Code Injection
2019-05-02 04:44:51
osv
osv
apache2 - several
2013-03-04 00:00:00
centos
centos
httpd, mod_ssl security update
2013-05-13 22:32:03
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2013-03-18 00:00:00
hackerone
hackerone
Marktplaats: Multiple Apache 2.2.22 Vulnerabilities (XSS/ Code Exec/ DoS)
2015-06-09 17:47:58
U.S. Dept Of Defense: Out-of-date Version (Apache)
2016-11-24 15:09:27
oracle
oracle
Oracle Critical Patch Update - January 2014
2014-01-14 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.218 Low
EPSS
Percentile
96.4%
Related for DEBIANCVE:CVE-2012-4558