Lucene search
RootSSV:60345HistoryAug 23, 2012 - 12:00 a.m.
Apache 2.4.2 HTTP Server HTML注入和信息泄露漏洞
2012-08-2300:00:00
Root
www.seebug.org
483
0.007 Low
EPSS
Percentile
77.7%
BUGTRAQ ID: 55131
CVE ID: CVE-2012-2687,CVE-2012-3502
Apache HTTP Server(简称Apache)是Apache软件基金会的一个开放源码的网页服务器,可以在大多数计算机操作系统中运行,由于其多平台和安全性被广泛使用,是最流行的Web服务器端软件之一。
Apache HTTP Server在实现上存在HTML注入漏洞和信息泄露漏洞,攻击者可利用这些漏洞获取敏感信息,在受影响站点浏览器中执行任意脚本代码,窃取cookie身份验证凭证或控制站点外观。
0
Apache 2.4.2
厂商补丁:
Apache Group
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
Related
nessus
nessus
Apache 2.4.1, 2.4.2 Multiple Vulnerabilities
2012-08-23 00:00:00
Apache 2.4.x < 2.4.3 Multiple Vulnerabilities
2012-08-23 00:00:00
Apache 2.4.x < 2.4.3 Multiple Vulnerabilities
2019-01-09 00:00:00
threatpost
threatpost
Apache Fixes Two Security Flaws in Version 2.4.3
2012-08-21 17:45:56
prion
prion
Information disclosure
2012-08-22 19:55:00
Cross site scripting
2012-08-22 19:55:00
ubuntucve
ubuntucve
CVE-2012-3502
2012-08-22 00:00:00
CVE-2012-2687
2012-08-22 00:00:00
cve
cve
CVE-2012-3502
2012-08-22 19:55:00
CVE-2012-2687
2012-08-22 19:55:00
debiancve
debiancve
CVE-2012-3502
2012-08-22 19:55:00
CVE-2012-2687
2012-08-22 19:55:00
f5
f5
K17202 : Apache HTTP server vulnerability CVE-2012-3502
2015-08-31 00:00:00
SOL17202 - Apache HTTP server vulnerability CVE-2012-3502
2015-08-31 00:00:00
SOL15901 - Apache HTTP server vulnerability CVE-2012-2687
2014-12-10 00:00:00
httpd
httpd
openvas
openvas
Apache HTTP Server Information Disclosure Vulnerability (Aug 2012) - Linux
2021-11-01 00:00:00
Mandriva Update for apache MDVSA-2012:154-1 (apache)
2012-10-03 00:00:00
Mandriva Update for apache MDVSA-2012:154-1 (apache)
2012-10-03 00:00:00
securityvulns
securityvulns
Apache security vulnerabilities
2012-10-01 00:00:00
[ MDVSA-2012:154 ] apache
2012-10-01 00:00:00
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2012-11-08 00:00:00
freebsd
freebsd
apache22 -- several vulnerabilities
2012-09-13 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: httpd-2.2.23-1.fc17
2013-02-12 04:59:23
veracode
veracode
Arbitrary File Upload
2019-05-02 04:45:35
Access Restriction Bypass
2019-05-02 04:43:22
Cross Site Scripting (XSS)
2019-05-02 04:42:42
centos
centos
httpd, mod_ssl security update
2013-01-09 20:52:40
httpd, mod_ssl security update
2013-02-27 19:35:19
redhat
redhat
(RHSA-2013:0512) Low: httpd security, bug fix, and enhancement update
2013-02-21 00:00:00
(RHSA-2013:0130) Low: httpd security, bug fix, and enhancement update
2013-01-08 00:00:00
oraclelinux
oraclelinux
httpd security, bug fix, and enhancement update
2013-01-11 00:00:00
httpd security, bug fix, and enhancement update
2013-02-22 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.24-alt1
2013-04-14 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2013
2013-07-16 00:00:00