Check Point Advisories

Preemptive Protection against Apache mod_imap and mod_imagemap Module Cross-Site Scripting Vulnerability

Check Point Reference: CPAI-2008-006
Date Published: 8 Jan 2008
Severity: Medium
Last Updated: Tuesday 01 January, 2008
Source: Secunia Advisory: SA28046
Industry Reference:CVE-2007-5000
Protection Provided by:
Who is Vulnerable? Apache Software Foundation HTTP Server 1.3.0 - 1.3.39
Apache Software Foundation HTTP Server 2.0.35 - 2.0.61
Apache Software Foundation HTTP Server 2.2.0 - 2.2.6
Vulnerability Description A cross-site scripting (XSS) vulnerability exists in Apache mod_imap and mod_imagemap Module. Apache HTTP server is a popular web server application. Successful exploitation of this vulnerability could result in execution of arbitrary code on a user's system.
Vulnerability DetailsThe vulnerability is due to insufficient validation of user supplied data. A remote attacker may convince a user to click on a specially crafted link that contains script code. Successful exploitation of this issue may result in information disclosure, and may allow the attacker to run arbitrary code on the vulnerable system.

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK