Vulnerability CVE-2008-0455

Vulnerability CVE-2008-0455

Published: 2008-01-24 Modified: 2012-02-12

Description:

	Topic	Author	Date
Med.	Apache mod_negotiation Xss and Http Response Splitting	Stefano Di Paola	25.01.2008

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Apache -> Http server

http://rhn.redhat.com/errata/RHSA-2012-1591.html

http://rhn.redhat.com/errata/RHSA-2012-1592.html

http://rhn.redhat.com/errata/RHSA-2012-1594.html

http://rhn.redhat.com/errata/RHSA-2013-0130.html

http://security.gentoo.org/glsa/glsa-200803-19.xml

http://securityreason.com/securityalert/3575

http://securitytracker.com/id?1019256

http://www.mindedsecurity.com/MSA01150108.html

http://www.securityfocus.com/archive/1/486847/100/0/threaded

http://www.securityfocus.com/bid/27409

https://exchange.xforce.ibmcloud.com/vulnerabilities/39867