Oval Definition:	oval:org.mitre.oval:def:10664
Revision Date: 2013-04-29 Version: 12 Title: Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) ss, (2) wr, or (3) rr parameters, or (4) the URL. Description: Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) ss, (2) wr, or (3) rr parameters, or (4) the URL. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2007-6421 Platform(s): CentOS Linux 5 Oracle Linux 5 Red Hat Enterprise Linux 5 Product(s): Definition Synopsis RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x OR Oracle Linux 5.x AND Configuration section httpd-manual is earlier than 0:2.2.3-11.el5_1.3 OR httpd-devel is earlier than 0:2.2.3-11.el5_1.3 OR mod_ssl is earlier than 0:2.2.3-11.el5_1.3 OR httpd is earlier than 0:2.2.3-11.el5_1.3
BACK