A security issue and a vulnerability have been reported in Apache, which can be exploited by malicious people to disclose potentially sensitive information and conduct cross-site scripting attacks .

1) Input passed to mod_proxy_ftp via an URL containing a FTP wildcard character (e.g. "*"), is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

2) The security issue is caused due to mod_proxy_http not properly handling certain timeout conditions, which can lead to responses being returned to the wrong users.

This is related to security issue #1 in:
SA40206

This only affects configurations triggering the proxy worker pools on UNIX platforms.

Vulnerability #1 is reported in versions 2.0.63 and 2.2.9. Security issue #2 is reported in version 2.2.9. Other versions may also be affected.

Solution
Apache 2.2.x:
Further details available in Customer Area

Provided and/or discovered by
The vendor credits:
1) Marc Bevand of Rapid7.
2) Jeremy Sowden

Changelog
Further details available in Customer Area

Original Advisory
Apache:
http://svn.apache.org/viewvc?view=rev&revision=682868
http://svn.apache.org/viewvc?view=revision&revision=699841
http://www.apache.org/dist/httpd/Announcement2.2.html
http://mail-archives.apache.org/mod_mbox/httpd-dev/201007.mbox/%3C20100730151509.GD4125@redhat.com%3E
http://www.apache.org/dist/httpd/CHANGES_2.0.64

Rapid7:
http://www.rapid7.com/advisories/R7-0033.jsp

Other references
Further details available in Customer Area

Alternate/detailed remediation
Further details available in Customer Area

Deep Links
Links available in Customer Area