FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2005-3352

This CVE name corresponds to:

Entered Topic
2006-01-01 apache -- mod_imap cross-site scripting flaw

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2005-3352 at cve.mitre.org

Details

Type Candidate
Name CVE-2005-3352
Phase Assigned(20051027)

Description

Cross-site scripting (XSS) vulnerability in the mod_imap module of Apache httpd before 1.3.35-dev and Apache httpd 2.0.x before 2.0.56-dev allows remote attackers to inject arbitrary web script or HTML via the Referer when using image maps.

References

Source Reference
CONFIRM http://issues.apache.org/bugzilla/show_bug.cgi?id=37874
CONFIRM http://docs.info.apple.com/article.html?artnum=307562
CONFIRM http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
AIXAPAR PK16139
AIXAPAR PK25355
APPLE APPLE-SA-2008-03-18
APPLE APPLE-SA-2008-05-28
DEBIAN DSA-1167
FEDORA FEDORA-2006-052
FEDORA FLSA-2006:175406
GENTOO GLSA-200602-03
HP HPSBUX02145
HP SSRT061202
HP HPSBUX02164
HP HPSBUX02172
HP SSRT061265
HP SSRT061269
HP HPSBMA02328
HP SSRT071293
HP HPSBOV02683
HP SSRT090208
MANDRIVA MDKSA-2006:007
OPENPKG OpenPKG-SA-2005.029
REDHAT RHSA-2006:0159
REDHAT RHSA-2006:0158
REDHAT RHSA-2006:0692
SGI 20060101-01-U
SLACKWARE SSA:2006-129-01
SLACKWARE SSA:2006-130-01
SUNALERT 102662
SUNALERT 102663
SUSE SUSE-SR:2006:004
SUSE SUSE-SA:2006:043
SUSE SUSE-SR:2007:011
TRUSTIX TSLSA-2005-0074
UBUNTU USN-241-1
CERT TA08-150A
BID 15834
OVAL oval:org.mitre.oval:def:10480
VUPEN ADV-2005-2870
VUPEN ADV-2006-2423
VUPEN ADV-2006-3995
VUPEN ADV-2006-4015
VUPEN ADV-2006-4300
VUPEN ADV-2006-4868
VUPEN ADV-2008-0924
VUPEN ADV-2008-1246
VUPEN ADV-2008-1697
SECTRACK 1015344
SECUNIA 18008
SECUNIA 18333
SECUNIA 18339
SECUNIA 18340
SECUNIA 18429
SECUNIA 18585
SECUNIA 18517
SECUNIA 18743
SECUNIA 17319
SECUNIA 18526
SECUNIA 19012
SECUNIA 20670
SECUNIA 21744
SECUNIA 22140
SECUNIA 22368
SECUNIA 22388
SECUNIA 22669
SECUNIA 23260
SECUNIA 20046
SECUNIA 25239
SECUNIA 29420
SECUNIA 29849
SECUNIA 30430

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.