apache 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1137817421
업데이트 : 2006.01.21
상세내용
CVE-2005-3352:
A flaw in the imagemap processing module, mod_imap, in versions of
Apache httpd 1.3, 2.0 and 2.2 can in some circumstances cause the
referer header to be output without being escaped in HTML.
This could allow an attacker who is able to influence the referer
header the ability to do cross-site scripting attacks against sites
using mod_imap in a vulnerable configuration.
Autoupdates 지원 : Packages System
pkgadd -F apache*
update 패키지
RPMS :
. apache-1.3.34-2.i686.rpm
. apache-devel-1.3.34-2.i686.rpm
SRPMS :
. apache-1.3.34-2.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3352
|