CVE-2006-5752

Current Description

Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apache HTTP Server (httpd), when ExtendedStatus is enabled and a public server-status page is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving charsets with browsers that perform "charset detection" when the content-type is not specified.

Basic Data

Published	June 27, 2007
Last Modified	October 17, 2018
Assigner	cve@mitre.org
Data Type	CVE
Data Format	MITRE
Data Version	4.0
Problem Type	NVD-CWE-Other
CVE Data Version	4.0

Base Metric V2

CVSS 2 - Version	2.0
CVSS 2 - Vector String	AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS 2 - Access Vector	NETWORK
CVSS 2 - Access Complexity	MEDIUM
CVSS 2 - Authentication	NONE
CVSS 2 - Confidentiality Impact	NONE
CVSS 2 - Availability Impact	NONE
CVSS 2 - Base Score	4.3
Severity	MEDIUM
Exploitability Score	8.6
Impact Score	2.9
Obtain All Privilege	false
Obtain User Privilege	false
Obtain Other Privilege	false

Base Metric V3

No data provided.

Configurations

AND

OR - Configuration 1

Cpe Version	Part	Vendor	Product	Version	Update	Edition	Language	SW Edition	Target SW	Target HW	Other
2.3	OS	Redhat	Enterprise Linux	2.1	*	es	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux	2.1	*	ia64	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux	2.1	*	ws	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux	3.0	*	as	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux	3.0	*	es	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux	3.0	*	ws	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux	4.0	*	as	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux	4.0	*	es	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux	4.0	*	ws	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux	5.0	*	desktop	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux	5.0	*	desktop_workstation	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux Desktop	3.0	*	*	*	*	*	*	*
2.3	OS	Redhat	Enterprise Linux Desktop	4.0	*	*	*	*	*	*	*
2.3	OS	Redhat	Linux Advanced Workstation	2.1	*	ia64	*	*	*	*	*
2.3	OS	Redhat	Linux Advanced Workstation	2.1	*	itanium	*	*	*	*	*

OR Running on/with:

Cpe Version	Part	Vendor	Product	Version	Update	Edition	Language	SW Edition	Target SW	Target HW	Other
2.3	Application	Apache	Http Server	2.2.0	*	*	*	*	*	*	*
2.3	Application	Apache	Http Server	2.2.3	*	*	*	*	*	*	*
2.3	Application	Apache	Http Server	2.2.4	*	*	*	*	*	*	*

Vulnerable Software List

Vendor	Product	Versions
Apache	Http Server	2.2.0, 2.2.3, 2.2.4

References

Name	Source	URL	Tags
http://bugs.gentoo.org/show_bug.cgi?id=186219	http://bugs.gentoo.org/show_bug.cgi?id=186219	CONFIRM
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=245112	http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=245112	MISC
SSRT071447	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795	HP
http://httpd.apache.org/security/vulnerabilities_13.html	http://httpd.apache.org/security/vulnerabilities_13.html	CONFIRM
http://httpd.apache.org/security/vulnerabilities_20.html	http://httpd.apache.org/security/vulnerabilities_20.html	CONFIRM
http://httpd.apache.org/security/vulnerabilities_22.html	http://httpd.apache.org/security/vulnerabilities_22.html	CONFIRM
[security-announce] 20090820 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server	http://lists.vmware.com/pipermail/security-announce/2009/000062.html	MLIST
37052	http://osvdb.org/37052	OSVDB
RHSA-2007:0534	http://rhn.redhat.com/errata/RHSA-2007-0534.html	REDHAT
RHSA-2007:0556	http://rhn.redhat.com/errata/RHSA-2007-0556.html	REDHAT
25827	http://secunia.com/advisories/25827	SECUNIA
25830	http://secunia.com/advisories/25830	SECUNIA
25873	http://secunia.com/advisories/25873	SECUNIA
25920	http://secunia.com/advisories/25920	SECUNIA
26273	http://secunia.com/advisories/26273	SECUNIA
26443	http://secunia.com/advisories/26443	SECUNIA
26458	http://secunia.com/advisories/26458	SECUNIA
26508	http://secunia.com/advisories/26508	SECUNIA
26822	http://secunia.com/advisories/26822	SECUNIA
26842	http://secunia.com/advisories/26842	SECUNIA
26993	http://secunia.com/advisories/26993	SECUNIA
27037	http://secunia.com/advisories/27037	SECUNIA
27563	http://secunia.com/advisories/27563	SECUNIA
27732	http://secunia.com/advisories/27732	SECUNIA
28212	http://secunia.com/advisories/28212	SECUNIA
28224	http://secunia.com/advisories/28224	SECUNIA
28606	http://secunia.com/advisories/28606	SECUNIA
GLSA-200711-06	http://security.gentoo.org/glsa/glsa-200711-06.xml	GENTOO
103179	http://sunsolve.sun.com/search/document.do?assetkey=1-26-103179-1	SUNALERT
200032	http://sunsolve.sun.com/search/document.do?assetkey=1-66-200032-1	SUNALERT
http://support.avaya.com/elmodocs2/security/ASA-2007-353.htm	http://support.avaya.com/elmodocs2/security/ASA-2007-353.htm	CONFIRM
http://svn.apache.org/viewvc?view=rev&revision=549159	http://svn.apache.org/viewvc?view=rev&revision=549159	CONFIRM
http://www.fujitsu.com/global/support/software/security/products-f/interstage-200802e.html	http://www.fujitsu.com/global/support/software/security/products-f/interstage-200802e.html	CONFIRM
MDKSA-2007:140	http://www.mandriva.com/security/advisories?name=MDKSA-2007:140	MANDRIVA
MDKSA-2007:141	http://www.mandriva.com/security/advisories?name=MDKSA-2007:141	MANDRIVA
MDKSA-2007:142	http://www.mandriva.com/security/advisories?name=MDKSA-2007:142	MANDRIVA
SUSE-SA:2007:061	http://www.novell.com/linux/security/advisories/2007_61_apache2.html	SUSE
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html	http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html	CONFIRM
FEDORA-2007-2214	http://www.redhat.com/archives/fedora-package-announce/2007-September/msg00320.html	FEDORA
RHSA-2007:0532	http://www.redhat.com/support/errata/RHSA-2007-0532.html	REDHAT
RHSA-2007:0557	http://www.redhat.com/support/errata/RHSA-2007-0557.html	REDHAT
RHSA-2008:0261	http://www.redhat.com/support/errata/RHSA-2008-0261.html	REDHAT
20090821 VMSA-2009-0010 VMware Hosted products update libpng and Apache HTTP Server	http://www.securityfocus.com/archive/1/505990/100/0/threaded	BUGTRAQ
24645	http://www.securityfocus.com/bid/24645	BID	Patch
1018302	http://www.securitytracker.com/id?1018302	SECTRACK
2007-0026	http://www.trustix.org/errata/2007/0026/	TRUSTIX
USN-499-1	http://www.ubuntu.com/usn/usn-499-1	UBUNTU
ADV-2007-2727	http://www.vupen.com/english/advisories/2007/2727	VUPEN
ADV-2007-3283	http://www.vupen.com/english/advisories/2007/3283	VUPEN
ADV-2007-3386	http://www.vupen.com/english/advisories/2007/3386	VUPEN
ADV-2007-4305	http://www.vupen.com/english/advisories/2007/4305	VUPEN
ADV-2008-0233	http://www.vupen.com/english/advisories/2008/0233	VUPEN
PK52702	http://www-1.ibm.com/support/docview.wss?uid=swg1PK52702	AIXAPAR
PK49295	http://www-1.ibm.com/support/search.wss?rs=0&q=PK49295&apar=only	AIXAPAR
apache-modstatus-xss(35097)	https://exchange.xforce.ibmcloud.com/vulnerabilities/35097	XF
https://issues.rpath.com/browse/RPL-1500	https://issues.rpath.com/browse/RPL-1500	CONFIRM
[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html	https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs	MLIST
[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html	https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs	MLIST
[httpd-cvs] 20190815 svn commit: r1048743 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html	https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f@%3Ccvs	MLIST
[httpd-cvs] 20190815 svn commit: r1048742 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html	https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53@%3Ccvs	MLIST
[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html	https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccv	MLIST
[httpd-cvs] 20200401 svn commit: r1058586 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html	https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7@%3Ccv	MLIST
[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html	https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccv	MLIST
[httpd-cvs] 20200401 svn commit: r1058587 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html	https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b@%3Ccv	MLIST
oval:org.mitre.oval:def:10154	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10154	OVAL
RHSA-2007:0533	https://rhn.redhat.com/errata/RHSA-2007-0533.html	REDHAT