Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2007-5000

Опубликовано: 11 дек. 2007
Источник: redhat
EPSS Высокий

Описание

Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Directory Server 8httpdWill not fix
Red Hat Certificate System 7.3antFixedRHSA-2010:060204.08.2010
Red Hat Certificate System 7.3avalon-logkitFixedRHSA-2010:060204.08.2010
Red Hat Certificate System 7.3axisFixedRHSA-2010:060204.08.2010
Red Hat Certificate System 7.3classpathx-jafFixedRHSA-2010:060204.08.2010
Red Hat Certificate System 7.3classpathx-mailFixedRHSA-2010:060204.08.2010
Red Hat Certificate System 7.3geronimo-specsFixedRHSA-2010:060204.08.2010
Red Hat Certificate System 7.3jakarta-commons-modelerFixedRHSA-2010:060204.08.2010
Red Hat Certificate System 7.3log4jFixedRHSA-2010:060204.08.2010
Red Hat Certificate System 7.3mx4jFixedRHSA-2010:060204.08.2010

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-79
https://bugzilla.redhat.com/show_bug.cgi?id=419931httpd: mod_imagemap XSS

EPSS

Процентиль: 99%
0.88672
Высокий

Связанные уязвимости

ubuntu логотип

CVE-2007-5000

ubuntu
больше 17 лет назад

Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

nvd логотип

CVE-2007-5000

nvd
больше 17 лет назад

Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

debian логотип

CVE-2007-5000

debian
больше 17 лет назад

Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in ...

github логотип

GHSA-wxg8-rr3m-222p

github
около 3 лет назад

Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

oracle-oval логотип

ELSA-2008-0008

oracle-oval
больше 17 лет назад

ELSA-2008-0008: Moderate: httpd security update (MODERATE)

EPSS

Процентиль: 99%
0.88672
Высокий