Lucene search
RootSSV:4786HistoryFeb 16, 2009 - 12:00 a.m.
IBM HTTP Server mod_proxy_ftp 跨站脚本漏洞
2009-02-1600:00:00
Root
www.seebug.org
102
0.055 Low
EPSS
Percentile
92.4%
BUGTRAQ ID:
CVE ID:CVE-2008-2939
CNCVE ID:CNCVE-20082939
IBM HTTP Server是一款HTTP服务程序。
IBM HTTP Server "mod_proxy_ftp"存在输入验证问题,远程攻击者可以利用漏洞进行跨站脚本攻击,获得敏感信息。
目前没有详细解决方案提供。
IBM HTTP Server 6.0.x
厂商解决方案
可参考如下安全公告获得补丁信息:
<a href=“http://www-01.ibm.com/support/docview.wss?uid=swg27007033” target=“_blank”>http://www-01.ibm.com/support/docview.wss?uid=swg27007033</a>
Related
checkpoint_advisories
checkpoint_advisories
Update Protection against Apache mod_proxy_ftp XSS Vulnerability
2008-09-19 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-10 00:29:44
seebug
seebug
Apache mod_proxy_ftp模块通配符字符跨站脚本漏洞
2008-08-08 00:00:00
ubuntucve
ubuntucve
CVE-2008-2939
2008-08-06 00:00:00
httpd
httpd
Apache Httpd < 2.0.64 : mod_proxy_ftp globbing XSS
2008-07-28 00:00:00
Apache Httpd < 2.2.10 : mod_proxy_ftp globbing XSS
2008-07-28 00:00:00
freebsd
freebsd
apache -- Cross-site scripting vulnerability
2008-07-25 00:00:00
cve
cve
CVE-2008-2939
2008-08-06 18:41:00
debiancve
debiancve
CVE-2008-2939
2008-08-06 18:41:00
nessus
nessus
Apache mod_proxy_ftp Directory Component Wildcard Character Globbing XSS
2008-10-16 00:00:00
FreeBSD : apache -- XSS vulnerability (f1892066-0e74-11de-92de-000bcdc1757a)
2009-03-12 00:00:00
SuSE9 Security Update : Apache 2 (YOU Patch Number 12258)
2009-09-24 00:00:00
openvas
openvas
SLES9: Security update for Apache 2
2009-10-10 00:00:00
Apache HTTP Server 'mod_proxy_ftp' Wildcard Characters XSS Vulnerability
2008-08-22 00:00:00
FreeBSD Ports: apache
2009-03-13 00:00:00
securityvulns
securityvulns
Apache mod_proxy_ftp crossite scripting
2008-08-07 00:00:00
Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting
2008-08-07 00:00:00
[ MDVSA-2009:124 ] apache
2009-06-01 00:00:00
cert
cert
Apache mod_proxy_ftp XSS vulnerability
2008-08-08 00:00:00
prion
prion
Cross site scripting
2008-08-06 18:41:00
redhat
redhat
(RHSA-2008:0967) Moderate: httpd security and bug fix update
2008-11-11 00:00:00
packetstorm
packetstorm
ProtonMail.ch Header Injection / CSRF
2014-05-30 00:00:00
oraclelinux
oraclelinux
httpd security and bug fix update
2008-11-11 00:00:00
centos
centos
httpd, mod_ssl security update
2008-11-11 20:45:50
ubuntu
ubuntu
Apache vulnerabilities
2009-03-10 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
kaspersky
kaspersky
KLA10066 Multiple vulnerabilities in Apache httpd
2010-10-19 00:00:00