Apache HTTP Server mod_status Unspecified XSS

2008-01-10T00:00:00
ID OSVDB:40262
Type osvdb
Reporter OSVDB
Modified 2008-01-10T00:00:00

Description

Solution Description

Upgrade to version 2.2.7-dev or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific News/Changelog Entry: http://httpd.apache.org/security/vulnerabilities_20.html Vendor Specific News/Changelog Entry: http://httpd.apache.org/security/vulnerabilities_22.html Vendor Specific News/Changelog Entry: http://httpd.apache.org/security/vulnerabilities_13.html Security Tracker: 1019154 Secunia Advisory ID:28526 RedHat RHSA: RHSA-2008:0007 RedHat RHSA: RHSA-2008:0004 RedHat RHSA: RHSA-2008:0006 RedHat RHSA: RHSA-2008:0005 RedHat RHSA: RHSA-2008:0008 Other Advisory URL: http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:016 FrSIRT Advisory: ADV-2008-0047 CVE-2007-6388 Bugtraq ID: 27237