Lucene search
FreeBSD9FFF8DC8-7AA7-11DA-BF72-00123F589060HistoryNov 01, 2005 - 12:00 a.m.
apache -- mod_imap cross-site scripting flaw
2005-11-0100:00:00
vuxml.freebsd.org
18
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.016 Low
EPSS
Percentile
87.3%
The Apache HTTP Server Project reports:
A flaw in mod_imap when using the Referer directive with
image maps. In certain site configurations a remote
attacker could perform a cross-site scripting attack if a
victim can be forced to visit a malicious URL using
certain web browsers.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | apache | = 1.3 | UNKNOWN |
| FreeBSD | any | noarch | apache | < 1.3.34_3 | UNKNOWN |
| FreeBSD | any | noarch | apache+mod_perl | < 1.3.34_1 | UNKNOWN |
| FreeBSD | any | noarch | apache_fp | = 0 | UNKNOWN |
| FreeBSD | any | noarch | apache+ipv6 | < 1.3.37 | UNKNOWN |
| FreeBSD | any | noarch | ru-apache | < 1.3.34+30.22_1 | UNKNOWN |
| FreeBSD | any | noarch | ru-apache+mod_ssl | < 1.3.34+30.22+2.8.25_1 | UNKNOWN |
| FreeBSD | any | noarch | apache+ssl | = 1.3.0 | UNKNOWN |
| FreeBSD | any | noarch | apache+ssl | < 1.3.33.1.55_2 | UNKNOWN |
| FreeBSD | any | noarch | apache+mod_ssl | < 1.3.34+2.8.25_1 | UNKNOWN |
Related
nessus
nessus
Apache mod_imap Image Map Referer XSS
2008-03-25 00:00:00
SuSE9 Security Update : Apache (YOU Patch Number 11489)
2009-09-24 00:00:00
openvas
openvas
Slackware Advisory SSA:2006-129-01 Apache httpd
2012-09-11 00:00:00
FreeBSD Ports: apache
2008-09-04 00:00:00
FreeBSD Ports: apache
2008-09-04 00:00:00
cve
cve
CVE-2005-3352
2005-12-13 20:03:00
centos
centos
apache security update
2006-01-30 00:50:54
httpd, mod_ssl security update
2006-01-05 21:38:50
securityvulns
securityvulns
[OpenPKG-SA-2005.029] OpenPKG Security Advisory (apache)
2005-12-16 00:00:00
About the security content of Security Update 2008-003 / Mac OS X 10.5.3
2008-05-30 00:00:00
httpd
httpd
Apache Httpd < 2.2.2 : mod_imap Referer Cross-Site Scripting
2005-11-01 00:00:00
Apache Httpd < 1.3.35 : mod_imap Referer Cross-Site Scripting
2005-11-01 00:00:00
Apache Httpd < 2.0.58 : mod_imap Referer Cross-Site Scripting
2005-11-01 00:00:00
redhat
redhat
(RHSA-2006:0158) apache security update
2006-01-17 00:00:00
(RHSA-2006:0159) httpd security update
2006-01-05 00:00:00
ubuntucve
ubuntucve
CVE-2005-3352
2005-12-13 00:00:00
debiancve
debiancve
CVE-2005-3352
2005-12-13 20:03:00
slackware
slackware
[slackware-security] Apache httpd
2006-05-09 22:19:21
jvn
jvn
JVN#06045169 mod_imap cross-site scripting vulnerability
2005-12-15 00:00:00
osv
osv
apache - missing input sanitising
2006-09-04 00:00:00
debian
debian
[SECURITY] [DSA 1167-1] New apache packages fix several vulnerabilities
2006-09-04 15:08:06
gentoo
gentoo
Apache: Multiple vulnerabilities
2006-02-06 00:00:00
ubuntu
ubuntu
Apache vulnerabilities
2006-01-13 00:00:00
suse
suse
remote denial of service in apache,apache2
2006-07-28 14:21:14
cert
cert
Apache mod_rewrite contains off-by-one error in ldap scheme handling
2006-07-28 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2013
2013-07-16 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.016 Low
EPSS
Percentile
87.3%
Related for 9FFF8DC8-7AA7-11DA-BF72-00123F589060