Home > Vulnerability Database > CVE-2006-3918

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2006-3918

Date: July 27, 2006

http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apache HTTP Server 1.3 before 1.3.35, 2.0 before 2.0.58, and 2.2 before 2.2.2, does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which might allow cross-site scripting (XSS) style attacks using web client components that can send arbitrary headers in requests, as demonstrated using a Flash SWF file.

Severity Score

3.7

Related Resources (60)

Url: http://www.securityfocus.com/bid/19661

Url: https://lists.apache.org/thread.html/reb542d2038e9c331506e0cbff881b47e40fbe2bd93ff00979e60cdf7%40%3Ccvs.httpd.apache.org%3E

Url: https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E

Url: ftp://patches.sgi.com/support/free/security/advisories/20060801-01-P

Url: http://marc.info/?l=bugtraq&m=130497311408250&w=2

Url: https://security-tracker.debian.org/tracker/CVE-2006-3918

Url: https://lists.apache.org/thread.html/rafd145ba6cd0a4ced113a5823cdaff45aeb36eb09855b216401c66d6%40%3Ccvs.httpd.apache.org%3E

Url: http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00004.html

Url: http://secunia.com/advisories/22140

Url: http://secunia.com/advisories/21172

Url: http://secunia.com/advisories/21174

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12238

Url: http://www-1.ibm.com/support/docview.wss?uid=swg24013080

Url: https://nvd.nist.gov/vuln/detail/CVE-2006-3918

Url: http://secunia.com/advisories/40256

Url: https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E

Url: http://www.vupen.com/english/advisories/2006/3264

Url: http://www.vupen.com/english/advisories/2010/1572

Url: http://www.vupen.com/english/advisories/2006/5089

Url: http://www.debian.org/security/2006/dsa-1167

Url: http://rhn.redhat.com/errata/RHSA-2006-0618.html

Url: http://marc.info/?l=bugtraq&m=125631037611762&w=2

Url: https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E

Url: http://secunia.com/advisories/22317

Url: http://www.ubuntu.com/usn/usn-575-1

Url: http://secunia.com/advisories/21744

Url: http://secunia.com/advisories/21986

Url: http://www.securitytracker.com/id?1024144

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2006-3918

Url: http://securityreason.com/securityalert/1294

Url: http://www.vupen.com/english/advisories/2006/2964

Url: http://www.vupen.com/english/advisories/2006/2963

Url: http://secunia.com/advisories/29640

Url: https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E

Url: https://lists.apache.org/thread.html/r652fc951306cdeca5a276e2021a34878a76695a9f3cfb6490b4a6840%40%3Ccvs.httpd.apache.org%3E

Url: http://secunia.com/advisories/21598

Url: http://secunia.com/advisories/21399

Url: http://svn.apache.org/viewvc?view=rev&revision=394965

Url: http://www-1.ibm.com/support/docview.wss?uid=swg1PK24631

Url: http://secunia.com/advisories/22523

Url: http://secunia.com/advisories/21478

Url: https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10%40%3Ccvs.httpd.apache.org%3E

Url: http://secunia.com/advisories/28749

Url: http://marc.info/?l=bugtraq&m=129190899612998&w=2

Url: http://www.f-secure.com/en_EMEA/support/security-advisory/fsc-2010-2.html

Url: http://www.novell.com/linux/security/advisories/2006_51_apache.html

Url: http://openbsd.org/errata.html#httpd2

Url: https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4%40%3Ccvs.httpd.apache.org%3E

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10352

Url: http://secunia.com/advisories/21848

Url: http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=3117

Url: http://rhn.redhat.com/errata/RHSA-2006-0692.html

Url: http://archives.neohapsis.com/archives/bugtraq/2006-05/0151.html

Url: http://securitytracker.com/id?1016569

Url: http://www.redhat.com/support/errata/RHSA-2006-0619.html

Url: http://archives.neohapsis.com/archives/bugtraq/2006-07/0425.html

Url: http://support.avaya.com/elmodocs2/security/ASA-2006-194.htm

Url: http://www.vupen.com/english/advisories/2006/4207

Url: http://kb.vmware.com/KanisaPlatform/Publishing/466/5915871_f.SAL_Public.html

Url: https://www.mend.io/vulnerability-database/CVE-2006-3918

Severity Score

3.7

Weakness Type (CWE)

Cross-Site Scripting (XSS)

CWE-79

CVSS v3.1

Base Score:	3.7
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	LOW
Availability (A):	NONE

CVSS v2

Base Score:	4.3
Access Vector (AV):	NETWORK
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	NONE
Integrity (I):	PARTIAL
Availability (A):	NONE
Additional information:

Do you need more information?

Contact Us