Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2007-6421
HistoryJan 08, 2008 - 12:00 a.m.

CVE-2007-6421

2008-01-0800:00:00
ubuntu.com
ubuntu.com
12

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

80.1%

JSON

Cross-site scripting (XSS) vulnerability in balancer-manager in
mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows
remote attackers to inject arbitrary web script or HTML via the (1) ss, (2)
wr, or (3) rr parameters, or (4) the URL.

Notes

Author Note
jdstrand redhat has patch
OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchapache2<Β 2.0.55-4ubuntu2.3UNKNOWN
ubuntu6.10noarchapache2<Β 2.0.55-4ubuntu4.2UNKNOWN
ubuntu7.04noarchapache2<Β 2.2.3-3.2ubuntu2.1UNKNOWN
ubuntu7.10noarchapache2<Β 2.2.4-3ubuntu0.1UNKNOWN

Related

debiancve 1
prion 1
veracode 1
httpd 1
cve 1
securityvulns 2
seebug 1
slackware 1
fedora 2
redhat 2
altlinux 3
openvas 14
nessus 16
oraclelinux 1
centos 1
suse 1
ubuntu 1
debiancve
debiancve
CVE-2007-6421
2008-01-08 19:46:00
prion
prion
Cross site scripting
2008-01-08 19:46:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-10 00:19:35
httpd
httpd
Apache Httpd < 2.2.8 : mod_proxy_balancer XSS
2007-12-12 00:00:00
cve
cve
CVE-2007-6421
2008-01-08 19:46:00
securityvulns
securityvulns
SecurityReason - Apache2 CSRF, XSS, Memory Corruption and Denial of Service Vulnerability
2008-01-12 00:00:00
Apache multiple security vulnerabilities
2008-01-24 00:00:00
seebug
seebug
Apache 'mod_proxy_balancer'存在倚δΈͺ漏洞
2008-01-14 00:00:00
slackware
slackware
[slackware-security] httpd
2008-02-15 01:22:54
fedora
fedora
[SECURITY] Fedora 8 Update: httpd-2.2.8-1.fc8
2008-02-16 02:11:16
[SECURITY] Fedora 7 Update: httpd-2.2.8-1.fc7
2008-02-16 02:08:32
redhat
redhat
(RHSA-2008:0009) Moderate: httpd security update
2008-01-21 00:00:00
(RHSA-2008:0008) Moderate: httpd security update
2008-01-15 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package apache2 version 2.2.8-alt1
2008-02-29 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.8-alt1
2008-02-29 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.8-alt1
2008-02-29 00:00:00
openvas
openvas
Slackware Advisory SSA:2008-045-01 httpd
2012-09-11 00:00:00
Mandriva Update for apache MDVSA-2008:016 (apache)
2009-04-09 00:00:00
Mandriva Update for apache MDVSA-2008:016 (apache)
2009-04-09 00:00:00
nessus
nessus
Slackware 12.0 / current : httpd (SSA:2008-045-01)
2008-02-18 00:00:00
Mandriva Linux Security Advisory : apache (MDVSA-2008:016)
2009-04-23 00:00:00
Fedora 7 : httpd-2.2.8-1.fc7 (2008-1711)
2008-02-18 00:00:00
oraclelinux
oraclelinux
Moderate: httpd security update
2008-01-15 00:00:00
centos
centos
httpd, mod_ssl security update
2008-01-16 22:06:46
suse
suse
cross site scripting in apache2,apache
2008-04-04 16:29:16
ubuntu
ubuntu
Apache vulnerabilities
2008-02-04 00:00:00

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

80.1%

JSON
Related for UB:CVE-2007-6421
debiancve1prion1veracode1httpd1cve1securityvulns2seebug1slackware1fedora2redhat2altlinux3openvas14nessus16oraclelinux1centos1suse1ubuntu1