Apache – CVE-2008-2939

Description

Cytrix has detected that the Version of Apache HTTP Server being used is vulnerable to ‘mod_proxy_ftp globbing XSS’.
That’s because of the ‘proxy_ftp.c’ in the ‘mod_proxy_ftp’ or the ‘mod_proxy_ftp.c in the mod_proxy_ftp’ modules.

CVE-2008-2939 is categorized as a ‘Improper Neutralization of Input During Web Page Generation (Cross-Site Scripting)’ vulnerability (CWE-79).
Improper Neutralization of Input During Web Page Generation occurs when the software does not neutralize or incorrectly neutralizes user-controllable input before it’s placed in output that is used as a web page that is served to other users.

By abusing the Vulnerability in one of the modules, remote attackers can inject arbitrary web script or HTMLs using a wildcard in the last directory component in the pathname in an FTP URI.

This vulnerability could allow attackers to modify system files and information.

Recommendation

To fix CVE-2008-2939, upgrade the version of Apache HTTP Server being used to either 2.2.10 or 2.0.64.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2939

https://cwe.mitre.org/data/definitions/79.html

< Return to all Vulnerabilities

HAR Files

In this article, I’ll talk and explain about HAR Files, so if you don’t know what they are, or, what do we use them for,

Read More »

Blue Team

We’ve talked about The Red Team before, but what about The Blue Team? How is this group different from the red one? Why would we

Read More »

Man-In-The-Middle Attacks

Do you know these people who just push themselves into conversations?That’s Man-In-The-Middle Attacks. And from a wider angle, Man-In-The-Middle Attacks, or MITM, are built around

Read More »