drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Cross-Site Scripting in httpd
Name: |
Cross-Site Scripting in httpd |
|
ID: |
TLSA-2006-24 |
|
Distribution: |
TurboLinux |
|
Plattformen: |
Turbolinux FUJI, Turbolinux 10 Server, Turbolinux 10 Server x64 Edition, Turbolinux Appliance Server 2.0, Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux 7 Server, Turbolinux 8 Server, Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal, Turbolinux Appliance Server 1.0 Hosting Edition, Turbolinux Appliance Server 1.0 Workgroup Edition |
|
Datum: |
Di, 5. September 2006, 03:50 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3918 |
|
Applikationen: |
Apache |
|
Originalnachricht |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
-------------------------------------------------------------------------- Turbolinux Security Advisory TLSA-2006-24 http://www.turbolinux.co.jp/security/ security-team@turbolinux.co.jp --------------------------------------------------------------------------
Original released date: 04 Sep 2006 Last revised: 04 Sep 2006
Package: httpd
Summary: Cross-site scripting vulnerability
More information: Apache is a powerful, full-featured, efficient, and freely-available Web server. Apache is also the most popular Web server on the Internet.
Cross-site scripting (XSS) vulnerability in the Apache.
Impact: This vulnerability allows dangerous tags to be processed by web browsers.
Affected Products: - Turbolinux Appliance Server 2.0 - Turbolinux FUJI - Turbolinux 10 Server x64 Edition - Turbolinux Appliance Server 1.0 Hosting Edition - Turbolinux Appliance Server 1.0 Workgroup Edition - Turbolinux 10 Server - Turbolinux Home - Turbolinux 10 F... - Turbolinux 10 Desktop - Turbolinux Multimedia - Turbolinux Personal - Turbolinux 8 Server - Turbolinux 7 Server
<Turbolinux Appliance Server 2.0>
Source Packages Size: MD5
httpd-2.0.51-25.src.rpm 6850738 1bc4ee028af8671b9aff563602a35afd
Binary Packages Size: MD5
httpd-2.0.51-25.i586.rpm 1032163 d0019acab22bf4456315d6de9f900b71 httpd-devel-2.0.51-25.i586.rpm 224485 1da95c6eb5fa51fe8b280e82d599b26b httpd-manual-2.0.51-25.i586.rpm 1132842 67e3600d72e71d52f19ff2c4b84a61cd mod_ssl-2.0.51-25.i586.rpm 88649 99c0217f2e77f98b2e51f5ff3e5419c6
<Turbolinux FUJI>
Source Packages Size: MD5
httpd-2.0.54-13.src.rpm 7618261 ff3b8108a62d2f4139dfaca2b7b4e10e
Binary Packages Size: MD5
httpd-2.0.54-13.i686.rpm 1265687 1413b9bf9f57d777159c8e9e07f6c9d5 httpd-devel-2.0.54-13.i686.rpm 275990 25439b4b91d25564cffc2b29938f4298
<Turbolinux 10 Server x64 Edition>
Source Packages Size: MD5
httpd-2.0.51-25.src.rpm 6850738 db0cda3ba2a32823d41f6e7eafb8a1bf
Binary Packages Size: MD5
httpd-2.0.51-25.x86_64.rpm 1142395 ac34a2f74ac7163bdc015c994a3889f7 httpd-debug-2.0.51-25.x86_64.rpm 3225415 12a3c1e345eb14381feab90d72d40f98 httpd-devel-2.0.51-25.x86_64.rpm 224373 33af9381d8db502791f3993e57a864f1 httpd-manual-2.0.51-25.x86_64.rpm 1132756 5d5a4d48cb2e25de8061b9a9908b3643 mod_bwshare-2.0.51-25.x86_64.rpm 41485 5394e8425ff292b66f55cfa208b122dc mod_ssl-2.0.51-25.x86_64.rpm 96239 c3bb30dcc38c17bb088492f215d82a78
<Turbolinux Appliance Server 1.0 Hosting Edition>
Source Packages Size: MD5
apache-1.3.27-35.src.rpm 3112347 b8301ae54e34763bddbc1e2599978965
Binary Packages Size: MD5
apache-1.3.27-35.i586.rpm 503062 2a8b62002b9ba5c5c62d35b3af0eec65 apache-devel-1.3.27-35.i586.rpm 95246 7565bcfce0fa9e8a903a92a86ecc283c mod_ssl-2.8.14-35.i586.rpm 182764 c5069008d3dce57ef89ca1dcb61fd80b
<Turbolinux Appliance Server 1.0 Workgroup Edition>
Source Packages Size: MD5
apache-1.3.27-35.src.rpm 3112347 9eff1d10c74fa75dbf96461b52b58b4e
Binary Packages Size: MD5
apache-1.3.27-35.i586.rpm 502612 9c1793e255c1fade2fec347c06b1aa84 apache-devel-1.3.27-35.i586.rpm 95350 f5dd62a16512c7b48078d132d80b4f25 mod_ssl-2.8.14-35.i586.rpm 182837 38ac3c26a551c7424a29022db92c57a3
<Turbolinux 10 Server>
Source Packages Size: MD5
httpd-2.0.51-25.src.rpm 6850738 1bc4ee028af8671b9aff563602a35afd
Binary Packages Size: MD5
httpd-2.0.51-25.i586.rpm 1032163 d0019acab22bf4456315d6de9f900b71 httpd-debug-2.0.51-25.i586.rpm 3240310 5c0d5d025f4795c01e49776ed9f9e27f httpd-devel-2.0.51-25.i586.rpm 224485 1da95c6eb5fa51fe8b280e82d599b26b httpd-manual-2.0.51-25.i586.rpm 1132842 67e3600d72e71d52f19ff2c4b84a61cd mod_bwshare-2.0.51-25.i586.rpm 40706 de513e0861376d329f6e49dd0ea30595 mod_ssl-2.0.51-25.i586.rpm 88649 99c0217f2e77f98b2e51f5ff3e5419c6
<Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal>
Source Packages Size: MD5
httpd-2.0.48-20.src.rpm 6321313 bf763330a095887759ba5f8b0fe5b75b
Binary Packages Size: MD5
httpd-2.0.48-20.i586.rpm 893211 78ac0b88ef3a3976e91acde7965de098
<Turbolinux 8 Server>
Source Packages Size: MD5
apache-1.3.27-35.src.rpm 3112347 d3dd6742515f1f13eff80de0531a5599
Binary Packages Size: MD5
apache-1.3.27-35.i586.rpm 503252 9ab8e4f7f76a969f20c621798aa1ff50 apache-devel-1.3.27-35.i586.rpm 95367 128d249d18c80ae53bd65d26d71e407e apache-manual-1.3.27-35.i586.rpm 851229 3800f8b0bfab682677c189bb6aa444de mod_ssl-2.8.14-35.i586.rpm 182806 aaa8164e75df04903b3a978aff6185e1
<Turbolinux 7 Server>
Source Packages Size: MD5
apache-1.3.27-35.src.rpm 3112347 cff3d6101f10def091398f5c7e1cec49
Binary Packages Size: MD5
apache-1.3.27-35.i586.rpm 489417 37609908fffa08e77d9ed117c51cd41d apache-devel-1.3.27-35.i586.rpm 95374 a825f09459ff386951102af18daf3155 apache-manual-1.3.27-35.i586.rpm 851341 d040a1ed06adb03a2cea7d9280c7531c mod_ssl-2.8.14-35.i586.rpm 180536 e7930bc57446bd141b01902cd3ef47b2
CVE [CVE-2006-3918] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3918
-------------------------------------------------------------------------- Revision History 04 Sep 2006 Initial release --------------------------------------------------------------------------
Copyright(C) 2006 Turbolinux, Inc. All rights reserved.
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux)
iD8DBQFE/BZMK0LzjOqIJMwRAgwzAKCkFxdSY95ZRybsV7AGth635O2b5wCdEw/Q Srwq1XPjDB0Ie5qjJF0Gyvk= =eeyM -----END PGP SIGNATURE-----
|
|
|
|