CVE-2008-0005 in HTTP Serverinformación

Resumen

por MITRE

mod_proxy_ftp in Apache 2.2.x before 2.2.7-dev, 2.0.x before 2.0.62-dev, and 1.3.x before 1.3.40-dev does not define a charset, which allows remote attackers to conduct cross-site scripting (XSS) attacks using UTF-7 encoding.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

2007-12-03

Divulgación

2008-01-11

Moderación

aceptado

Artículo

VDB-40503

CPE

listo

CWE

CWE-79 (confirmado)

CVSS

5.3 (VulDB)

EPSS

0.02726

KEV

Actividades

muy bajo

Sector

Police, Education, ...

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-0005
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-0005
CVE Details	https://www.cvedetails.com/cve/CVE-2008-0005/

◂ Anterior Visión De Conjunto Próximo ▸

Do you know our Splunk app?

Download it now for free!