New Search

HP-UX Running Apache Remote Cross Site Scripting (XSS) or Denial of Service (DoS)

oval:org.mitre.oval:def:5143

Cross-site scripting (XSS) vulnerability in Apache 2.2.6 and earlier allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded URLs that are not properly handled when displaying the 403 Forbidden error page.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • HP-UX 11
Class:
vulnerability
Reference(s):
  • CVE-2008-2168
Product(s):