CVE-2007-6203

{"id": "CVE-2007-6203", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2007-12-03T22:46:00.000", "references": [{"url": "http://docs.info.apple.com/article.html?artnum=307562", "source": "cve@mitre.org"}, {"url": "http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html", "source": "cve@mitre.org"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00004.html", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=125631037611762&w=2", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=129190899612998&w=2", "source": "cve@mitre.org"}, {"url": "http://procheckup.com/Vulnerability_PR07-37.php", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/27906", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/28196", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/29348", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/29420", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/29640", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/30356", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/30732", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/33105", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/34219", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://security.gentoo.org/glsa/glsa-200803-19.xml", "source": "cve@mitre.org"}, {"url": "http://securityreason.com/securityalert/3411", "source": "cve@mitre.org"}, {"url": "http://www-1.ibm.com/support/docview.wss?uid=swg1PK57952", "source": "cve@mitre.org"}, {"url": "http://www-1.ibm.com/support/docview.wss?uid=swg24019245", "source": "cve@mitre.org"}, {"url": "http://www.fujitsu.com/global/support/software/security/products-f/interstage-200807e.html", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/484410/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/26663", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1019030", "source": "cve@mitre.org"}, {"url": "http://www.ubuntu.com/usn/USN-731-1", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/4060", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/4301", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/0924/references", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/1623/references", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/1875/references", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38800", "source": "cve@mitre.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12166", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Apache HTTP Server 2.0.x and 2.2.x does not sanitize the HTTP Method specifier header from an HTTP request when it is reflected back in a \"413 Request Entity Too Large\" error message, which might allow cross-site scripting (XSS) style attacks using web client components that can send arbitrary headers in requests, as demonstrated via an HTTP request containing an invalid Content-length value, a similar issue to CVE-2006-3918."}, {"lang": "es", "value": "Apache HTTP Server 2.0.x y 2.2.x no sanea la cabecera de especificador de HTTP Method de una petici\u00f3n HTTP cuando es reflejada en un error \"413 Request Entity Too Large\", lo cual podr\u00eda permitir ataques tipo secuencias de comandos en sitios cruzados (XSS) utilizando componentes de clientes web que pueden enviar cabeceras de su elecci\u00f3n en peticiones, como se demuestra con una petici\u00f3n petici\u00f3n HTTP conteniendo un valor inv\u00e1lido de Content-length, asunto similar a CVE-2006-3918."}], "lastModified": "2018-10-15T21:50:58.373", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:apache:http_server:2.0.46:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB0FDE3D-1509-4375-8703-0D174D70B22E"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.47:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AFE732B5-00C9-4443-97E0-1DF21475C26B"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.48:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C79C41D3-6894-4F2D-B8F8-82AB4780A824"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.49:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "449A5647-CEA6-4314-9DB8-D086F388E1C7"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5A407B7-F432-48F0-916A-A49952F85CA6"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B5AC769-D07D-43C7-B252-A5A812E7D58C"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ADF4DBF6-DAF0-47E7-863B-C48DB7149A78"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.53:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2F19D71-0A58-4B03-B351-596EB67ECF80"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.54:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5EBB3FF9-CF5A-4E7B-ACE3-A198343AD485"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.55:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D721FFB5-D6D3-4F60-8B09-B3AD07EE6D4D"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.57:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0CF37A82-49B6-45D4-B91D-FDA2D4463A0C"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.58:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "030D1767-2DF7-48E3-B462-4B49CA751B35"}, {"criteria": "cpe:2.3:a:apache:http_server:2.0.59:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5236DC61-5557-4C24-8F5B-F48548448588"}, {"criteria": "cpe:2.3:a:apache:http_server:2.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D72E88F0-AB0F-4B6F-AE86-71B0DE84BD75"}, {"criteria": "cpe:2.3:a:apache:http_server:2.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "840FF871-79EC-472C-91BD-9E9AFC36B408"}, {"criteria": "cpe:2.3:a:apache:http_server:2.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "191E8654-5338-4051-A1D5-EE491D594F13"}, {"criteria": "cpe:2.3:a:apache:http_server:2.1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B26CC819-7315-456F-9F95-2A64FCE6AC26"}, {"criteria": "cpe:2.3:a:apache:http_server:2.1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F3774827-AB0B-4A95-844B-9BC904A9FE98"}, {"criteria": "cpe:2.3:a:apache:http_server:2.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18D07925-542B-4369-AA21-5587703E12E0"}, {"criteria": "cpe:2.3:a:apache:http_server:2.1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACC83EB5-4E9A-4EA9-8D9F-BDBF5F60C54A"}, {"criteria": "cpe:2.3:a:apache:http_server:2.1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "80632488-5C7E-4C70-BB60-BC4756187670"}, {"criteria": "cpe:2.3:a:apache:http_server:2.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67AD11FB-529C-404E-A13B-284F145322B8"}, {"criteria": "cpe:2.3:a:apache:http_server:2.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CCBBB7FE-35FC-4515-8393-5145339FCE4D"}, {"criteria": "cpe:2.3:a:apache:http_server:2.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F519633F-AB68-495A-B85E-FD41F9F752CA"}, {"criteria": "cpe:2.3:a:apache:http_server:2.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A894BED6-C97D-4DA4-A13D-9CB2B3306BC5"}], "operator": "OR"}]}], "vendorComments": [{"comment": "The Apache Software Foundation security team does not consider this issue to be a security vulnerability. In order to exploit this for cross-site scripting, the attacker would have to get the victim to supply an arbitrary malformed HTTP method to a target site.", "lastModified": "2008-06-09T00:00:00", "organization": "Apache"}, {"comment": "Red Hat does not consider this issue to be a vulnerability. In order to exploit this for cross-site scripting, the attacker would have to get the victim to supply an arbitrary malformed HTTP method to a target site.", "lastModified": "2007-12-06T00:00:00", "organization": "Red Hat"}], "sourceIdentifier": "cve@mitre.org"}