CVE-2007-5000 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-5000
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5000

Description: Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/39002 http://xforce.iss.net/xforce/xfdb/39001 UBUNTU http://www.ubuntu.com/usn/usn-575-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00004.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-233623-1 ST 1019093 SLACKWARE http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.595748 SAID Secunia Advisory: SA29420 Secunia Advisory: SA29640 Secunia Advisory: SA28977 Secunia Advisory: SA28922 Secunia Advisory: SA28750 Secunia Advisory: SA28749 Secunia Advisory: SA28607 Secunia Advisory: SA28526 Secunia Advisory: SA28525 Secunia Advisory: SA28471 Secunia Advisory: SA28467 Secunia Advisory: SA28375 Secunia Advisory: SA28196 Secunia Advisory: SA28081 Secunia Advisory: SA28073 Secunia Advisory: SA28046 Secunia Advisory: SA29806 Secunia Advisory: SA29988 Secunia Advisory: SA30356 Secunia Advisory: SA30430 Secunia Advisory: SA31142 Secunia Advisory: SA30732 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0008.html http://www.redhat.com/support/errata/RHSA-2008-0007.html http://www.redhat.com/support/errata/RHSA-2008-0261.html http://www.redhat.com/support/errata/RHSA-2008-0009.html http://www.redhat.com/support/errata/RHSA-2008-0004.html http://www.redhat.com/support/errata/RHSA-2008-0006.html http://www.redhat.com/support/errata/RHSA-2008-0005.html OSVDB 39134 MLIST http://lists.vmware.com/pipermail/security-announce/2009/000062.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:016 http://www.mandriva.com/security/advisories?name=MDVSA-2008:014 http://www.mandriva.com/security/advisories?name=MDVSA-2008:015 HP http://www.securityfocus.com/archive/1/archive/1/498523/100/0/threaded http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01345501 FEDORA CONFIRM http://docs.info.apple.com/article.html?artnum=307562 http://support.avaya.com/elmodocs2/security/ASA-2008-032.htm http://httpd.apache.org/security/vulnerabilities_22.html http://www.fujitsu.com/global/support/software/security/products-f/interstage-200801e.html http://httpd.apache.org/security/vulnerabilities_20.html http://httpd.apache.org/security/vulnerabilities_13.html CERT http://www.us-cert.gov/cas/techalerts/TA08-150A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/505990/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/494428/100/0/threaded BID 26838 APPLE http://lists.apple.com/archives/security-announce/2008//May/msg00001.html http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html AIXAPAR http://www-1.ibm.com/support/docview.wss?uid=swg1PK58074 http://www-1.ibm.com/support/docview.wss?uid=swg1PK63273 http://www-1.ibm.com/support/docview.wss?uid=swg24019245 http://www-1.ibm.com/support/docview.wss?uid=swg1PK58024

Return to the previous page.