IBM HTTP Server Two Vulnerabilities - Advisories

IBM HTTP Server Two Vulnerabilities

Secunia Advisory:	SA21478
Release Date:	2006-08-11

Critical:	Moderately critical
Impact:	Cross Site Scripting DoS System access
Where:	From remote
Solution Status:	Vendor Patch

Software:	IBM HTTP Server 1.x

CVE reference:	CVE-2006-3747 (Secunia mirror) CVE-2006-3918 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: IBM has acknowledged two vulnerabilities in IBM HTTP Server, which can be exploited by malicious people to conduct cross-site scripting attacks and potentially compromise a vulnerable system. For more information: SA21172 SA21197 Solution: Apply PK27875. http://www-1.ibm.com/support/docview.wss?uid=swg24013080 Original Advisory: IBM: http://www-1.ibm.com/support/docview.wss?uid=swg24013080 Other References: SA21172: http://secunia.com/advisories/21172/ SA21197: http://secunia.com/advisories/21197/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

10 Related Secunia Security Advisories

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Internet Explorer "DisableCaching OfSSLPages" Weakness

2.	Microsoft Windows CE Image Processing Vulnerabilities

3.	Sun Solaris Print Service Unspecified Vulnerabilities

4.	Red Hat Directory Server Regular Expression Handler Buffer Overflow

5.	Pngcrush libpng Unknown Chunk Processing Uninitialized Memory Access

6.	SUSE Update for Multiple Packages

7.	Facebook Photo Uploader ActiveX Control Property Handling Buffer Overflow

8.	Fedora Directory Server Regular Expression Handler Buffer Overflow

9.	Gentoo ltsp Multiple Vulnerabilities

10.	Sarg Multiple Unspecified Buffer Overflows