Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-2939HistoryAug 06, 2008 - 6:41 p.m.
CVE-2008-2939
2008-08-0618:41:00
Debian Security Bug Tracker
security-tracker.debian.org
17
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.072 Low
EPSS
Percentile
94.0%
Cross-site scripting (XSS) vulnerability in proxy_ftp.c in the mod_proxy_ftp module in Apache 2.0.63 and earlier, and mod_proxy_ftp.c in the mod_proxy_ftp module in Apache 2.2.9 and earlier 2.2 versions, allows remote attackers to inject arbitrary web script or HTML via a wildcard in the last directory component in the pathname in an FTP URI.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | apache2 | <ย 2.2.9-7 | apache2_2.2.9-7_all.deb |
| Debian | 11 | all | apache2 | <ย 2.2.9-7 | apache2_2.2.9-7_all.deb |
| Debian | 999 | all | apache2 | <ย 2.2.9-7 | apache2_2.2.9-7_all.deb |
| Debian | 13 | all | apache2 | <ย 2.2.9-7 | apache2_2.2.9-7_all.deb |
Related
freebsd
freebsd
apache -- Cross-site scripting vulnerability
2008-07-25 00:00:00
checkpoint_advisories
checkpoint_advisories
Update protection against Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross Site Scripting
2008-09-19 00:00:00
Apache Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting (CVE-2008-2939)
2009-09-30 00:00:00
Update Protection against Apache mod_proxy_ftp XSS Vulnerability
2008-09-19 00:00:00
cve
cve
CVE-2008-2939
2008-08-06 18:41:00
httpd
httpd
Apache Httpd < 2.0.64 : mod_proxy_ftp globbing XSS
2008-07-28 00:00:00
Apache Httpd < 2.2.10 : mod_proxy_ftp globbing XSS
2008-07-28 00:00:00
veracode
veracode
Cross-Site Scripting (XSS)
2020-04-10 00:29:44
ubuntucve
ubuntucve
CVE-2008-2939
2008-08-06 00:00:00
seebug
seebug
Apache mod_proxy_ftpๆจกๅ้้
็ฌฆๅญ็ฌฆ่ทจ็ซ่ๆฌๆผๆด
2008-08-08 00:00:00
IBM HTTP Server mod_proxy_ftp ่ทจ็ซ่ๆฌๆผๆด
2009-02-16 00:00:00
openvas
openvas
Apache HTTP Server 'mod_proxy_ftp' Wildcard Characters XSS Vulnerability
2008-08-22 00:00:00
SLES9: Security update for Apache 2
2009-10-10 00:00:00
FreeBSD Ports: apache
2009-03-13 00:00:00
securityvulns
securityvulns
Apache mod_proxy_ftp crossite scripting
2008-08-07 00:00:00
Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting
2008-08-07 00:00:00
[ MDVSA-2009:124 ] apache
2009-06-01 00:00:00
nessus
nessus
Apache mod_proxy_ftp Directory Component Wildcard Character Globbing XSS
2008-10-16 00:00:00
FreeBSD : apache -- XSS vulnerability (f1892066-0e74-11de-92de-000bcdc1757a)
2009-03-12 00:00:00
SuSE9 Security Update : Apache 2 (YOU Patch Number 12258)
2009-09-24 00:00:00
nvd
nvd
CVE-2008-2939
2008-08-06 18:41:00
cert
cert
Apache mod_proxy_ftp XSS vulnerability
2008-08-08 00:00:00
cvelist
cvelist
CVE-2008-2939
2008-08-06 18:00:00
prion
prion
Cross site scripting
2008-08-06 18:41:00
redhat
redhat
(RHSA-2008:0967) Moderate: httpd security and bug fix update
2008-11-11 00:00:00
packetstorm
packetstorm
ProtonMail.ch Header Injection / CSRF
2014-05-30 00:00:00
oraclelinux
oraclelinux
httpd security and bug fix update
2008-11-11 00:00:00
centos
centos
httpd, mod_ssl security update
2008-11-11 20:45:50
ubuntu
ubuntu
Apache vulnerabilities
2009-03-10 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
Security fix for the ALT Linux 10 package apache2 version 2.2.12-alt1
2009-07-30 00:00:00
kaspersky
kaspersky
KLA10066 Multiple vulnerabilities in Apache httpd
2010-10-19 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.072 Low
EPSS
Percentile
94.0%
Related for DEBIANCVE:CVE-2008-2939