Rapid7 Vulnerability & Exploit Database

F5 Networks: K8186 (CVE-2007-5000): Cross-site scripting vulnerability in Apache mod_imap CVE-2007-5000

Free InsightVM Trial No credit card necessary
Watch Demo See how it all works
Back to Search

F5 Networks: K8186 (CVE-2007-5000): Cross-site scripting vulnerability in Apache mod_imap CVE-2007-5000

Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
12/13/2007
Created
07/25/2018
Added
02/16/2017
Modified
09/16/2019

Description

Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Solution(s)

  • f5-big-ip-upgrade-latest

References

  • https://support.f5.com/csp/article/K8186
  • APPLE-SA-2008-03-18
  • APPLE-SA-2008-05-28
  • SUSE-SA:2008:021
  • 1019093
  • 233623
  • MDVSA-2008:014
  • MDVSA-2008:015
  • MDVSA-2008:016
  • RHSA-2008:0004
  • RHSA-2008:0005
  • RHSA-2008:0006
  • RHSA-2008:0007
  • RHSA-2008:0008
  • RHSA-2008:0009
  • RHSA-2008:0261
  • 26838
  • USN-575-1
  • TA08-150A
  • apache-modimagemap-xss(39002)
  • apache-modimap-xss(39001)
  • CVE-2007-5000
View more

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;