Lucene search

K
freebsdFreeBSD65539C54-2517-11E2-B9D6-20CF30E32F6D
HistorySep 13, 2012 - 12:00 a.m.

apache22 -- several vulnerabilities

2012-09-1300:00:00
vuxml.freebsd.org
17

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.0%

Apache HTTP SERVER PROJECT reports:

low: XSS in mod_negotiation when untrusted uploads are supported CVE-2012-2687
Possible XSS for sites which use mod_negotiation and
allow untrusted uploads to locations which have MultiViews enabled.
low: insecure LD_LIBRARY_PATH handling CVE-2012-0883
This issue was already fixed in port version 2.2.22_5

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.007 Low

EPSS

Percentile

80.0%