Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability

Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability

References:

Apache Homepage (Apache Software Foundation)
Apache httpd 2.0 vulnerabilities (Apache Software Foundation)
mod_proxy_ftp (Apache Software Foundation)
PM10658: IBM HTTP SERVER 2.0.47 CUMULATIVE INTERIM FIX (IBM)
Revision 682868 (Apache Software Foundation)
Revision 682871 (Apache Software Foundation)
Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting (marc_bevand@rapid7.com)
Apache HTTP Server 2.2.10 Released (Apache)
Fix list for IBM HTTP Server Version 6.0.2 (IBM)
PK70937: Z/OS IBM HTTP SERVER FOR WEBSPHERE (POWERED BY APACHE) FIX PACK 6.1.0.2 (IBM)
RHSA-2008:0966 Red Hat Application Stack v2.2 enhancement update (Red Hat)
September 13, 2011 - Director multiple Apache vulnerabilities (Blue Coat)
Solution 247666: Security Vulnerabilities in the Apache 2.0 'mod_proxy_http' and (Sun)
Vulnerability Note VU#663763 Apache mod_proxy_ftp XSS vulnerability (US-CERT)

Privacy Statement
Copyright 2010, SecurityFocus