CVE-2005-3352

Publication date 13 December 2005

Last updated 24 July 2024


Ubuntu priority

Cross-site scripting (XSS) vulnerability in the mod_imap module of Apache httpd before 1.3.35-dev and Apache httpd 2.0.x before 2.0.56-dev allows remote attackers to inject arbitrary web script or HTML via the Referer when using image maps.

Status

Package Ubuntu Release Status
apache 7.04 feisty
Fixed 1.3.34-4ubuntu1
6.10 edgy
Fixed 1.3.34-4ubuntu1
6.06 LTS dapper
Fixed 1.3.34-2ubuntu0.1
apache2 7.04 feisty
Fixed 2.2.3-3.2ubuntu0.1
6.10 edgy
Fixed 2.0.55-4ubuntu4.1
6.06 LTS dapper
Fixed 2.0.55-4ubuntu2.2

References

Related Ubuntu Security Notices (USN)

    • USN-241-1
    • Apache vulnerabilities
    • 13 January 2006

Other references