QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2012-3499

Back to search

CVE-2012-3499

Published: Feb 26, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors involving hostnames and URIs in the (1) mod_imagemap, (2) mod_info, (3) mod_ldap, (4) mod_proxy_ftp, and (5) mod_status modules.

VendorProductVersions

n/a

n/a

affected
n/a

References

SSRT101139
vendor-advisory
x_refsource_HP
58165
vdb-entry
x_refsource_BID
FEDORA-2013-4541
vendor-advisory
x_refsource_FEDORA
RHSA-2013:1209
vendor-advisory
x_refsource_REDHAT
RHSA-2013:0815
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:19312
vdb-entry
signature
x_refsource_OVAL
RHSA-2013:1207
vendor-advisory
x_refsource_REDHAT
DSA-2637
vendor-advisory
x_refsource_DEBIAN
APPLE-SA-2013-09-12-1
vendor-advisory
x_refsource_APPLE
RHSA-2013:1208
vendor-advisory
x_refsource_REDHAT
64758
vdb-entry
x_refsource_BID
HPSBUX02866
vendor-advisory
x_refsource_HP
55032
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now