Gentoo Linux: CVE-2006-5752: Apache: Multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | June 27, 2007 | October 30, 2017 | October 30, 2017 |
Description
Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apache HTTP Server (httpd), when ExtendedStatus is enabled and a public server-status page is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving charsets with browsers that perform "charset detection" when the content-type is not specified.
Scan For This Vulnerability
Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities
References
Solution
gentoo-linux-upgrade-www-servers-apacheRelated Vulnerabilities
- OS X security update 2008-002 for Apache (CVE-2006-5752)
- ELSA-2007-0556 Moderate: Enterprise Linux httpd security update
- RHSA-2007:0532: apache security update
- RHSA-2010:0602: Red Hat Certificate System 7.3 security update
- SUSE Linux Security Vulnerability: CVE-2006-5752
- Apache HTTPD: mod_status cross-site scripting (CVE-2006-5752)
- USN-499-1: Apache vulnerabilities
- Sun Patch: SunOS 5.9: Apache Security Patch
- Sun Patch: SunOS 5.9_x86: Apache Security Patch
- Sun Patch: SunOS 5.10: Apache 1.3 Patch
- CESA-2007:0534: httpd security update
- Sun Patch: SunOS 5.10: Apache 2 Patch
- RHSA-2007:0557: httpd security update
- CESA-2007:0556: httpd security update
- Sun Patch: SunOS 5.10_x86: Apache 1.3 Patch
- RHSA-2008:0261: Red Hat Network Satellite Server security update
- RHSA-2007:0534: httpd security update
- RHSA-2008:0523: Red Hat Network Proxy Server security update
- ELSA-2007-0534 Moderate: Enterprise Linux httpd security update
- SUSE-SA:2007:061: Apache2
- Sun Patch: SunOS 5.8_x86: Apache Patch
- RHSA-2008:0524: Red Hat Network Satellite Server security update
- SUSE Linux Security Advisory: SUSE-SA:2007:061
- Sun Patch: SunOS 5.5_x86: pam security patch
- RHSA-2008:0263: Red Hat Network Proxy Server security update
- RHSA-2007:0533: httpd security update
- Sun Patch: SunOS 5.8: Apache Patch
- Sun Patch: SunOS 5.10_x86: Apache 2 Patch
- CESA-2007:0532: apache security update
- RHSA-2007:0556: httpd security update
- FreeBSD: apache -- multiple vulnerabilities (Multiple CVEs)
- CESA-2007:0533: httpd security update
- ELSA-2007-0533 Moderate: Enterprise Linux httpd security update