Summary: | CVE-2005-3352 mod_imap cross-site scripting flaw | ||
---|---|---|---|
Product: | Apache httpd-2 | Reporter: | Mark Cox <mjc> |
Component: | mod_imap | Assignee: | Apache HTTPD Bugs Mailing List <bugs> |
Status: | CLOSED FIXED | ||
Severity: | normal | ||
Priority: | P2 | ||
Version: | 2.2.0 | ||
Target Milestone: | --- | ||
Hardware: | All | ||
OS: | other | ||
Attachments: |
Patch for apache-1.3 tree (ack fielding, jorton)
Patch for apache-2.0 tree (ack fielding, jorton) |
Description
Mark Cox
2005-12-12 17:23:25 UTC
Created attachment 17199 [details]
Patch for apache-1.3 tree (ack fielding, jorton)
Created attachment 17200 [details]
Patch for apache-2.0 tree (ack fielding, jorton)
VU#299838 JPCERT#94453446 JVN#06045169 The fixes for this were committed a while back: http://svn.apache.org/viewcvs?rev=357161&view=rev (trunk) http://svn.apache.org/viewcvs?rev=356291&view=rev (2.2.x) http://svn.apache.org/viewcvs?rev=356278&view=rev (1.3.x) http://svn.apache.org/viewcvs?rev=356279&view=rev (2.0.x) |