Potential Security Vulnerability with Apache

  • 3918173
  • 16-Nov-2007
  • 27-Apr-2012

Environment

NetWare 6.5
Apache 2.059

Situation

Potential XSS vulnerability with Apache on NetWare 65 SP7
Reported as CVE-2007-4465
There is a potential XSS vulnerability with Apache on NetWare 6.5 which as been rated as a low to medium risk vulnerability by CERT.

Resolution

This problem has been reported to engineering.
The only systems affected are those where the"AddDefaultCharset" directive has been removed, and are using directory indexes.

Status

Reported to Engineering
Security Alert

Feedback service temporarily unavailable. For content questions or problems, please contact Support.