Vulnerability & Exploit Database

Displaying entries 1 - 10 of 29 in total

Results for: CVE-2012-3499 Back to search

RHSA-2013:1208: Red Hat JBoss Enterprise Application Platform 6.1.1 update Vulnerability

  • Severity: 5
  • Published: June 10, 2013

Red Hat JBoss Enterprise Application Platform 6.1.1, which fixes multiple security issues, various bugs, and adds enhancements, is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give d...

RHSA-2013:1207: Red Hat JBoss Enterprise Application Platform 6.1.1 update Vulnerability

  • Severity: 5
  • Published: June 10, 2013

Red Hat JBoss Enterprise Application Platform 6.1.1, which fixes multiple security issues, various bugs, and adds enhancements, is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give d...

Amazon Linux AMI: Security patch for httpd24 (ALAS-2013-194) (multiple CVEs) Vulnerability

  • Severity: 5
  • Published: June 10, 2013

mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.

Amazon Linux AMI: Security patch for httpd (ALAS-2013-193) (multiple CVEs) Vulnerability

  • Severity: 5
  • Published: June 10, 2013

mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.

RHSA-2013:1012: Red Hat JBoss Web Server 2.0.1 update Vulnerability

  • Severity: 7
  • Published: June 01, 2013

Red Hat JBoss Web Server 2.0.1, which fixes multiple security issues and several bugs, is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available f...

RHSA-2013:1011: Red Hat JBoss Web Server 2.0.1 update Vulnerability

  • Severity: 7
  • Published: June 01, 2013

Red Hat JBoss Web Server 2.0.1, which fixes multiple security issues and several bugs, is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available f...

SUSE Linux Security Vulnerability: CVE-2012-3499 Vulnerability

  • Severity: 4
  • Published: February 26, 2013

Multiple cross-site scripting (XSS) vulnerabilities in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors involving hostnames and URIs in the (1) mod_imagemap, (2) mod_info, (3) mod_ldap, (4) mod_proxy_ftp, and (5) mod_status modules.

Oracle Solaris 11: CVE-2012-3499: Vulnerability in Apache HTTP Server Vulnerability

  • Severity: 4
  • Published: February 26, 2013

Multiple cross-site scripting (XSS) vulnerabilities in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors involving hostnames and URIs in the (1) mod_imagemap, (2) mod_info, (3) mod_ldap, (4) mod_proxy_ftp, and (5) mod_status modules.

RHSA-2013:0815: httpd security update Vulnerability

  • Severity: 5
  • Published: February 26, 2013

The Apache HTTP Server is a popular web server.Cross-site scripting (XSS) flaws were found in the mod_proxy_balancermodule's manager web interface. If a remote attacker could trick a user,who was logged into the manager web interface, into visiting aspecially-crafted URL, it would lead to arbitrary web script execution inthe context of t...

ELSA-2013-0815 Moderate: Oracle Linux httpd security update Vulnerability

  • Severity: 5
  • Published: February 26, 2013

mod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to execute arbitrary commands via an HTTP request containing an escape sequence for a terminal emulator.