Launchpad.net

CVE 2006-3918

http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apache HTTP Server 1.3 before 1.3.35, 2.0 before 2.0.58, and 2.2 before 2.2.2, does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which might allow cross-site scripting (XSS) style attacks using web client components that can send arbitrary headers in requests, as demonstrated using a Flash SWF file.

See the

CVE page on Mitre.org for more details.

References

BUGTRAQ: 20060508 Unfiltered He...
BUGTRAQ: 20060724 Write-up by A...
AIXAPAR: PK24631
SECTRACK: 1016569
SECUNIA: 21172
SECUNIA: 21174
AIXAPAR: PK27875
REDHAT: RHSA-2006:0618
REDHAT: RHSA-2006:0619
SECUNIA: 21399
SECUNIA: 21478
DEBIAN: DSA-1167
SGI: 20060801-01-P
SECUNIA: 21848
SECUNIA: 21598
SECUNIA: 21744
SUSE: SUSE-SA:2006:051
CONFIRM: http://support.avaya.c...
SECUNIA: 21986
REDHAT: RHSA-2006:0692
SECUNIA: 22140
OPENBSD: [3.9] 012: SECURITY FI...
BID: 19661
SECUNIA: 22317
SECUNIA: 22523
CONFIRM: http://kb.vmware.com/K...
SREASON: 1294
UBUNTU: USN-575-1
SECUNIA: 28749
SUSE: SUSE-SA:2008:021
SECUNIA: 29640
VUPEN: ADV-2006-2963
VUPEN: ADV-2006-2964
VUPEN: ADV-2006-3264
VUPEN: ADV-2006-4207
VUPEN: ADV-2006-5089
CONFIRM: http://www.f-secure.co...
SECTRACK: 1024144
SECUNIA: 40256
VUPEN: ADV-2010-1572
CONFIRM: http://svn.apache.org/...
CONFIRM: http://www14.software....
HP: HPSBUX02465
HP: SSRT090192
HP: HPSBUX02612
HP: SSRT100345
HP: HPSBOV02683
HP: SSRT090208
OVAL: oval:org.mitre.oval:de...
OVAL: oval:org.mitre.oval:de...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210330 s...
MLIST: [httpd-cvs] 20210603 s...
MLIST: [httpd-cvs] 20210606 s...
MLIST: [httpd-cvs] 20210606 s...

Launchpad.net

CVE 2006-3918

Related bugs

References