Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability

Bugtraq ID:	30560
Class:	Input Validation Error
CVE:	CVE-2008-2939
Remote:	Yes
Local:	No
Published:	Aug 05 2008 12:00AM
Updated:	Aug 05 2010 10:15PM
Credit:	Marc Bevand
Vulnerable:	Ubuntu Ubuntu Linux 8.04 LTS sparc Ubuntu Ubuntu Linux 8.04 LTS powerpc Ubuntu Ubuntu Linux 8.04 LTS lpia Ubuntu Ubuntu Linux 8.04 LTS i386 Ubuntu Ubuntu Linux 8.04 LTS amd64 Ubuntu Ubuntu Linux 7.10 sparc Ubuntu Ubuntu Linux 7.10 powerpc Ubuntu Ubuntu Linux 7.10 lpia Ubuntu Ubuntu Linux 7.10 i386 Ubuntu Ubuntu Linux 7.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 Turbolinux Turbolinux Server 10.0 Turbolinux Turbolinux Server 11 x64 Turbolinux Turbolinux Server 11 Turbolinux Turbolinux Server 10.0.0 x64 TurboLinux Personal TurboLinux Multimedia Turbolinux FUJI 0 Turbolinux Client 2008 Turbolinux Appliance Server 2.0 SuSE SUSE Linux Enterprise Server 9 SuSE SUSE Linux Enterprise Server 10 SuSE SUSE Linux Enterprise Desktop 10 SP2 SuSE SUSE Linux Enterprise Desktop 10 SP1 SuSE SUSE Linux Enterprise Desktop 10 SuSE openSUSE 10.3 Sun Solaris 10_x86 Sun Solaris 10_sparc S.u.S.E. openSUSE 11.0 S.u.S.E. openSUSE 10.2 S.u.S.E. Open-Enterprise-Server 9.0 S.u.S.E. Novell Linux POS 9 S.u.S.E. Novell Linux Desktop 9.0 rPath rPath Linux 2 rPath rPath Linux 1 rPath Appliance Platform Linux Service 2 rPath Appliance Platform Linux Service 1 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux Desktop Workstation 5 client RedHat Enterprise Linux AS 4 RedHat Enterprise Linux AS 3 RedHat Enterprise Linux 5 server RedHat Desktop 4.0 RedHat Desktop 3.0 RedHat Certificate Server 7.3 RedHat Application Stack v2 0 Red Hat Enterprise Linux Desktop 5 client Pardus Linux 2008 0 Pardus Linux 2007 0 MandrakeSoft Multi Network Firewall 2.0 MandrakeSoft Linux Mandrake 2009.1 x86_64 MandrakeSoft Linux Mandrake 2009.1 MandrakeSoft Linux Mandrake 2009.0 x86_64 MandrakeSoft Linux Mandrake 2009.0 MandrakeSoft Linux Mandrake 2008.1 x86_64 MandrakeSoft Linux Mandrake 2008.1 MandrakeSoft Linux Mandrake 2008.0 x86_64 MandrakeSoft Linux Mandrake 2008.0 MandrakeSoft Linux Mandrake 2007.1 x86_64 MandrakeSoft Linux Mandrake 2007.1 MandrakeSoft Corporate Server 4.0 x86_64 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 MandrakeSoft Corporate Server 4.0 IBM Websphere Application Server 6.1 .9 IBM Websphere Application Server 6.1 .8 IBM Websphere Application Server 6.1 .7 IBM Websphere Application Server 6.1 .6 IBM Websphere Application Server 6.1 .5 IBM Websphere Application Server 6.1 .4 IBM Websphere Application Server 6.1 .3 IBM Websphere Application Server 6.1 .20 IBM Websphere Application Server 6.1 .2 IBM Websphere Application Server 6.1 .19 IBM Websphere Application Server 6.1 .18 IBM Websphere Application Server 6.1 .17 IBM Websphere Application Server 6.1 .15 IBM Websphere Application Server 6.1 .14 IBM Websphere Application Server 6.1 .13 IBM Websphere Application Server 6.1 .12 IBM Websphere Application Server 6.1 .11 IBM Websphere Application Server 6.1 .10 IBM Websphere Application Server 6.1 .1 IBM Websphere Application Server 6.1 IBM HTTP Server 6.0.2 .27 IBM HTTP Server 6.0.2 .13 IBM HTTP Server 6.0.2 IBM HTTP Server 2.0.47 .1 IBM HTTP Server 2.0.47 IBM HTTP Server 6.0.2.23 IBM HTTP Server 6.0.2.19 IBM HTTP Server 6.0.2.12 HP HP-UX B.11.31 HP HP-UX B.11.23 HP HP-UX B.11.11 HP Business Availability Center 8.01 Apple Mac OS X 10.5.6 Apple Mac OS X 10.5.5 Apple Mac OS X 10.5.4 Apple Mac OS X 10.5.3 Apple Mac OS X 10.5.2 Apple Mac OS X 10.5.1 Apple Mac OS X 10.4.11 Apple Mac OS X 10.4.10 Apple Mac OS X 10.4.9 Apple Mac OS X 10.4.8 Apple Mac OS X 10.4.7 Apple Mac OS X 10.4.6 Apple Mac OS X 10.4.5 Apple Mac OS X 10.4.4 Apple Mac OS X 10.4.3 Apple Mac OS X 10.4.2 Apple Mac OS X 10.4.1 Apple Mac OS X 10.4 Apple Mac OS X 10.5 Apache Software Foundation Apache 2.2.9 + Adobe Flash Media Server 3.5.3 + Adobe Flash Media Server 3.5.2 + Adobe Flash Media Server 3.5.1 Apache Software Foundation Apache 2.0.63 Apache Software Foundation Apache 2.0.59 Apache Software Foundation Apache 2.0.58 Apache Software Foundation Apache 2.0.57 Apache Software Foundation Apache 2.0.56 -dev Apache Software Foundation Apache 2.0.55 Apache Software Foundation Apache 2.0.54 + Debian Linux 3.1 sparc + Debian Linux 3.1 s/390 + Debian Linux 3.1 ppc + Debian Linux 3.1 mipsel + Debian Linux 3.1 mips + Debian Linux 3.1 m68k + Debian Linux 3.1 ia-64 + Debian Linux 3.1 ia-32 + Debian Linux 3.1 hppa + Debian Linux 3.1 arm + Debian Linux 3.1 amd64 + Debian Linux 3.1 alpha + Debian Linux 3.1 Apache Software Foundation Apache 2.0.53 Apache Software Foundation Apache 2.0.52 Apache Software Foundation Apache 2.0.51 Apache Software Foundation Apache 2.0.50 Apache Software Foundation Apache 2.0.49 + S.u.S.E. Linux Personal 9.1 + Trustix Secure Linux 2.1 + Trustix Secure Linux 2.0 Apache Software Foundation Apache 2.0.48 + MandrakeSoft Linux Mandrake 10.0 AMD64 + MandrakeSoft Linux Mandrake 10.0 + S.u.S.E. Linux 8.1 + S.u.S.E. Linux Personal 9.0 x86_64 + S.u.S.E. Linux Personal 9.0 + S.u.S.E. Linux Personal 8.2 + Trustix Secure Linux 2.1 + Trustix Secure Linux 2.0 Apache Software Foundation Apache 2.0.47 Apache Software Foundation Apache 2.0.46 Apache Software Foundation Apache 2.0.45 Apache Software Foundation Apache 2.0.44 Apache Software Foundation Apache 2.0.43 Apache Software Foundation Apache 2.0.42 Apache Software Foundation Apache 2.0.41 Apache Software Foundation Apache 2.0.40 + RedHat Linux 9.0 i386 + RedHat Linux 8.0 + Terra Soft Solutions Yellow Dog Linux 3.0 Apache Software Foundation Apache 2.0.39 Apache Software Foundation Apache 2.0.38 Apache Software Foundation Apache 2.0.37 Apache Software Foundation Apache 2.0.36 Apache Software Foundation Apache 2.0.35 Apache Software Foundation Apache 2.0.62-dev Apache Software Foundation Apache 2.0.61-dev Apache Software Foundation Apache 2.0.60-dev
Not Vulnerable:	IBM Websphere Application Server 6.1 .21 IBM HTTP Server 6.0.2 .33 Apache Software Foundation Apache 2.2.10 Apache Software Foundation Apache 2.0.64-dev

Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability

The Apache 'mod_proxy_ftp' module is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.

This issue is reported to affect Apache 2.0.63 and 2.2.9; other versions may also be affected.

Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability

An attacker can exploit this issue by enticing an unsuspecting victim to follow a malicious URI.

Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability

Solution:
Updates are available. Please see the references for more information.


Ubuntu Ubuntu Linux 7.10 powerpc

• Ubuntu apache2-doc_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-doc_2.2. 4-3ubuntu0.2_all.deb


• Ubuntu apache2-mpm-event_2.2.4-3ubuntu0.2_powerpc.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-even t_2.2.4-3ubuntu0.2_powerpc.deb


• Ubuntu apache2-mpm-perchild_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-perc hild_2.2.4-3ubuntu0.2_all.deb


• Ubuntu apache2-mpm-prefork_2.2.4-3ubuntu0.2_powerpc.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-pref ork_2.2.4-3ubuntu0.2_powerpc.deb


• Ubuntu apache2-mpm-worker_2.2.4-3ubuntu0.2_powerpc.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-work er_2.2.4-3ubuntu0.2_powerpc.deb


• Ubuntu apache2-prefork-dev_2.2.4-3ubuntu0.2_powerpc.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-prefork- dev_2.2.4-3ubuntu0.2_powerpc.deb


• Ubuntu apache2-src_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-src_2.2. 4-3ubuntu0.2_all.deb


• Ubuntu apache2-threaded-dev_2.2.4-3ubuntu0.2_powerpc.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-threaded -dev_2.2.4-3ubuntu0.2_powerpc.deb


• Ubuntu apache2-utils_2.2.4-3ubuntu0.2_powerpc.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-utils_2. 2.4-3ubuntu0.2_powerpc.deb


• Ubuntu apache2.2-common_2.2.4-3ubuntu0.2_powerpc.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2.2-common _2.2.4-3ubuntu0.2_powerpc.deb


• Ubuntu apache2_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2_2.2.4-3u buntu0.2_all.deb

MandrakeSoft Linux Mandrake 2008.0

• Mandriva apache-base-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-devel-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-htcacheclean-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_authn_dbd-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_cache-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dav-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dbd-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_deflate-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_disk_cache-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_file_cache-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ldap-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_mem_cache-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy_ajp-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ssl-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_userdir-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-modules-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-event-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-itk-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-prefork-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-worker-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-source-2.2.6-8.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/

MandrakeSoft Linux Mandrake 2009.0 x86_64

• Mandriva apache-base-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-devel-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-htcacheclean-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_authn_dbd-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_cache-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dav-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dbd-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_deflate-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_disk_cache-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_file_cache-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ldap-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_mem_cache-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy_ajp-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ssl-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_userdir-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-modules-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-event-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-itk-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-peruser-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-prefork-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-worker-2.2.9-12.1mdv2009.0.x86_64.rpm
  http://www.mandriva.com/en/download/

MandrakeSoft Linux Mandrake 2008.1 x86_64

• Mandriva apache-base-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-base-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-devel-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-devel-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-htcacheclean-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-htcacheclean-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_authn_dbd-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_authn_dbd-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_cache-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_cache-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dav-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dav-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dbd-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dbd-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_deflate-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_deflate-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_disk_cache-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_disk_cache-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_file_cache-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_file_cache-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ldap-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ldap-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_mem_cache-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_mem_cache-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy_ajp-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy_ajp-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ssl-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ssl-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_userdir-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_userdir-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-modules-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-modules-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-event-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-event-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-itk-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-itk-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-prefork-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-prefork-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-worker-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-worker-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-source-2.2.8-6.2mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-source-2.2.8-6.4mdv2008.1.x86_64.rpm
  http://www.mandriva.com/en/download/

MandrakeSoft Linux Mandrake 2008.1

• Mandriva apache-base-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-base-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-devel-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-devel-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-htcacheclean-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-htcacheclean-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_authn_dbd-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_authn_dbd-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_cache-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_cache-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dav-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dav-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dbd-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dbd-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_deflate-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_deflate-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_disk_cache-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_disk_cache-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_file_cache-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_file_cache-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ldap-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ldap-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_mem_cache-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_mem_cache-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy_ajp-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy_ajp-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ssl-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ssl-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_userdir-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_userdir-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-modules-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-modules-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-event-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-event-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-itk-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-itk-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-prefork-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-prefork-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-worker-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-worker-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-source-2.2.8-6.2mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-source-2.2.8-6.4mdv2008.1.i586.rpm
  http://www.mandriva.com/en/download/

MandrakeSoft Linux Mandrake 2009.1 x86_64

• Mandriva apache-base-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-devel-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-htcacheclean-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_authn_dbd-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_cache-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dav-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dbd-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_deflate-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_disk_cache-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_file_cache-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ldap-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_mem_cache-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy_ajp-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ssl-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_userdir-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-modules-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-event-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-itk-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-peruser-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-prefork-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-worker-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-source-2.2.11-10.2mdv2009.1.x86_64.rpm
  http://www.mandriva.com/en/download/

HP HP-UX B.11.23

• HP HPUXWSATW-B222-1123-32.depot
  PA-32
  http://software.hp.com


• HP HPUXWSATW-B222-1123-64.depot
  IA-64
  http://software.hp.com


• HP HPUXWSATW-B302-32.depot
  IA-64
  http://software.hp.com

Ubuntu Ubuntu Linux 8.04 LTS lpia

• Ubuntu apache2-doc_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-doc_2.2. 8-1ubuntu0.4_all.deb


• Ubuntu apache2-mpm-event_2.2.8-1ubuntu0.4_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-event_2.2.8-1u buntu0.4_lpia.deb


• Ubuntu apache2-mpm-perchild_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-perc hild_2.2.8-1ubuntu0.4_all.deb


• Ubuntu apache2-mpm-prefork_2.2.8-1ubuntu0.4_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-prefork_2.2.8- 1ubuntu0.4_lpia.deb


• Ubuntu apache2-mpm-worker_2.2.8-1ubuntu0.4_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-worker_2.2.8-1 ubuntu0.4_lpia.deb


• Ubuntu apache2-prefork-dev_2.2.8-1ubuntu0.4_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-prefork-dev_2.2.8- 1ubuntu0.4_lpia.deb


• Ubuntu apache2-src_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-src_2.2. 8-1ubuntu0.4_all.deb


• Ubuntu apache2-threaded-dev_2.2.8-1ubuntu0.4_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-threaded-dev_2.2.8 -1ubuntu0.4_lpia.deb


• Ubuntu apache2-utils_2.2.8-1ubuntu0.4_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-utils_2.2.8-1ubunt u0.4_lpia.deb


• Ubuntu apache2.2-common_2.2.8-1ubuntu0.4_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2.2-common_2.2.8-1ub untu0.4_lpia.deb


• Ubuntu apache2_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2_2.2.8-1u buntu0.4_all.deb

Ubuntu Ubuntu Linux 6.06 LTS i386

• Ubuntu apache2-common_2.0.55-4ubuntu2.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-common_2 .0.55-4ubuntu2.4_i386.deb


• Ubuntu apache2-doc_2.0.55-4ubuntu2.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-doc_2.0. 55-4ubuntu2.4_all.deb


• Ubuntu apache2-mpm-perchild_2.0.55-4ubuntu2.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-perc hild_2.0.55-4ubuntu2.4_i386.deb


• Ubuntu apache2-mpm-prefork_2.0.55-4ubuntu2.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-pref ork_2.0.55-4ubuntu2.4_i386.deb


• Ubuntu apache2-mpm-worker_2.0.55-4ubuntu2.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-work er_2.0.55-4ubuntu2.4_i386.deb


• Ubuntu apache2-prefork-dev_2.0.55-4ubuntu2.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-prefork- dev_2.0.55-4ubuntu2.4_i386.deb


• Ubuntu apache2-threaded-dev_2.0.55-4ubuntu2.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-threaded -dev_2.0.55-4ubuntu2.4_i386.deb


• Ubuntu apache2-utils_2.0.55-4ubuntu2.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-utils_2. 0.55-4ubuntu2.4_i386.deb


• Ubuntu apache2_2.0.55-4ubuntu2.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2_2.0.55-4 ubuntu2.4_i386.deb


• Ubuntu libapr0-dev_2.0.55-4ubuntu2.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/libapr0-dev_2.0. 55-4ubuntu2.4_i386.deb


• Ubuntu libapr0_2.0.55-4ubuntu2.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/libapr0_2.0.55-4 ubuntu2.4_i386.deb

Ubuntu Ubuntu Linux 7.10 lpia

• Ubuntu apache2-doc_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-doc_2.2. 4-3ubuntu0.2_all.deb


• Ubuntu apache2-mpm-event_2.2.4-3ubuntu0.2_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-event_2.2.4-3u buntu0.2_lpia.deb


• Ubuntu apache2-mpm-perchild_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-perc hild_2.2.4-3ubuntu0.2_all.deb


• Ubuntu apache2-mpm-prefork_2.2.4-3ubuntu0.2_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-prefork_2.2.4- 3ubuntu0.2_lpia.deb


• Ubuntu apache2-mpm-worker_2.2.4-3ubuntu0.2_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-worker_2.2.4-3 ubuntu0.2_lpia.deb


• Ubuntu apache2-prefork-dev_2.2.4-3ubuntu0.2_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-prefork-dev_2.2.4- 3ubuntu0.2_lpia.deb


• Ubuntu apache2-src_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-src_2.2. 4-3ubuntu0.2_all.deb


• Ubuntu apache2-threaded-dev_2.2.4-3ubuntu0.2_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-threaded-dev_2.2.4 -3ubuntu0.2_lpia.deb


• Ubuntu apache2-utils_2.2.4-3ubuntu0.2_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-utils_2.2.4-3ubunt u0.2_lpia.deb


• Ubuntu apache2.2-common_2.2.4-3ubuntu0.2_lpia.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2.2-common_2.2.4-3ub untu0.2_lpia.deb


• Ubuntu apache2_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2_2.2.4-3u buntu0.2_all.deb

HP HP-UX B.11.11

• HP HPUXWSATW-B222-1111.depot
  PA-32
  http://software.hp.com


• HP HPUXWSATW-B302-64.depot
  http://software.hp.com

MandrakeSoft Linux Mandrake 2009.0

• Mandriva apache-base-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-devel-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-htcacheclean-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_authn_dbd-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_cache-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dav-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dbd-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_deflate-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_disk_cache-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_file_cache-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ldap-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_mem_cache-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy_ajp-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ssl-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_userdir-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-modules-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-event-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-itk-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-peruser-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-prefork-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-worker-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-source-2.2.9-12.1mdv2009.0.i586.rpm
  http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 7.10 amd64

• Ubuntu apache2-doc_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-doc_2.2. 4-3ubuntu0.2_all.deb


• Ubuntu apache2-mpm-event_2.2.4-3ubuntu0.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-even t_2.2.4-3ubuntu0.2_amd64.deb


• Ubuntu apache2-mpm-perchild_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-perc hild_2.2.4-3ubuntu0.2_all.deb


• Ubuntu apache2-mpm-prefork_2.2.4-3ubuntu0.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-pref ork_2.2.4-3ubuntu0.2_amd64.deb


• Ubuntu apache2-mpm-worker_2.2.4-3ubuntu0.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-work er_2.2.4-3ubuntu0.2_amd64.deb


• Ubuntu apache2-prefork-dev_2.2.4-3ubuntu0.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-prefork- dev_2.2.4-3ubuntu0.2_amd64.deb


• Ubuntu apache2-src_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-src_2.2. 4-3ubuntu0.2_all.deb


• Ubuntu apache2-threaded-dev_2.2.4-3ubuntu0.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-threaded -dev_2.2.4-3ubuntu0.2_amd64.deb


• Ubuntu apache2-utils_2.2.4-3ubuntu0.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-utils_2. 2.4-3ubuntu0.2_amd64.deb


• Ubuntu apache2.2-common_2.2.4-3ubuntu0.2_amd64.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2.2-common _2.2.4-3ubuntu0.2_amd64.deb


• Ubuntu apache2_2.2.4-3ubuntu0.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2_2.2.4-3u buntu0.2_all.deb

Ubuntu Ubuntu Linux 8.04 LTS i386

• Ubuntu apache2-doc_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-doc_2.2. 8-1ubuntu0.4_all.deb


• Ubuntu apache2-mpm-event_2.2.8-1ubuntu0.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-even t_2.2.8-1ubuntu0.4_i386.deb


• Ubuntu apache2-mpm-perchild_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-perc hild_2.2.8-1ubuntu0.4_all.deb


• Ubuntu apache2-mpm-prefork_2.2.8-1ubuntu0.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-pref ork_2.2.8-1ubuntu0.4_i386.deb


• Ubuntu apache2-mpm-worker_2.2.8-1ubuntu0.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-work er_2.2.8-1ubuntu0.4_i386.deb


• Ubuntu apache2-prefork-dev_2.2.8-1ubuntu0.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-prefork- dev_2.2.8-1ubuntu0.4_i386.deb


• Ubuntu apache2-src_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-src_2.2. 8-1ubuntu0.4_all.deb


• Ubuntu apache2-threaded-dev_2.2.8-1ubuntu0.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-threaded -dev_2.2.8-1ubuntu0.4_i386.deb


• Ubuntu apache2-utils_2.2.8-1ubuntu0.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-utils_2. 2.8-1ubuntu0.4_i386.deb


• Ubuntu apache2.2-common_2.2.8-1ubuntu0.4_i386.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2.2-common _2.2.8-1ubuntu0.4_i386.deb


• Ubuntu apache2_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2_2.2.8-1u buntu0.4_all.deb

Apple Mac OS X 10.5

• Apple MacOSXUpdCombo10.5.7.dmg
  http://support.apple.com/downloads/DL827/MacOSXUpdCombo10.5.7.dmg

Ubuntu Ubuntu Linux 8.04 LTS powerpc

• Ubuntu apache2-doc_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-doc_2.2. 8-1ubuntu0.4_all.deb


• Ubuntu apache2-mpm-event_2.2.8-1ubuntu0.4_powerpc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-event_2.2.8-1u buntu0.4_powerpc.deb


• Ubuntu apache2-mpm-perchild_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-perc hild_2.2.8-1ubuntu0.4_all.deb


• Ubuntu apache2-mpm-prefork_2.2.8-1ubuntu0.4_powerpc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-prefork_2.2.8- 1ubuntu0.4_powerpc.deb


• Ubuntu apache2-mpm-worker_2.2.8-1ubuntu0.4_powerpc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-worker_2.2.8-1 ubuntu0.4_powerpc.deb


• Ubuntu apache2-prefork-dev_2.2.8-1ubuntu0.4_powerpc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-prefork-dev_2.2.8- 1ubuntu0.4_powerpc.deb


• Ubuntu apache2-src_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-src_2.2. 8-1ubuntu0.4_all.deb


• Ubuntu apache2-threaded-dev_2.2.8-1ubuntu0.4_powerpc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-threaded-dev_2.2.8 -1ubuntu0.4_powerpc.deb


• Ubuntu apache2-utils_2.2.8-1ubuntu0.4_powerpc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-utils_2.2.8-1ubunt u0.4_powerpc.deb


• Ubuntu apache2.2-common_2.2.8-1ubuntu0.4_powerpc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2.2-common_2.2.8-1ub untu0.4_powerpc.deb


• Ubuntu apache2_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2_2.2.8-1u buntu0.4_all.deb

Ubuntu Ubuntu Linux 8.04 LTS sparc

• Ubuntu apache2-doc_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-doc_2.2. 8-1ubuntu0.4_all.deb


• Ubuntu apache2-mpm-event_2.2.8-1ubuntu0.4_sparc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-event_2.2.8-1u buntu0.4_sparc.deb


• Ubuntu apache2-mpm-perchild_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-mpm-perc hild_2.2.8-1ubuntu0.4_all.deb


• Ubuntu apache2-mpm-prefork_2.2.8-1ubuntu0.4_sparc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-prefork_2.2.8- 1ubuntu0.4_sparc.deb


• Ubuntu apache2-mpm-worker_2.2.8-1ubuntu0.4_sparc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-mpm-worker_2.2.8-1 ubuntu0.4_sparc.deb


• Ubuntu apache2-prefork-dev_2.2.8-1ubuntu0.4_sparc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-prefork-dev_2.2.8- 1ubuntu0.4_sparc.deb


• Ubuntu apache2-src_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2-src_2.2. 8-1ubuntu0.4_all.deb


• Ubuntu apache2-threaded-dev_2.2.8-1ubuntu0.4_sparc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-threaded-dev_2.2.8 -1ubuntu0.4_sparc.deb


• Ubuntu apache2-utils_2.2.8-1ubuntu0.4_sparc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2-utils_2.2.8-1ubunt u0.4_sparc.deb


• Ubuntu apache2.2-common_2.2.8-1ubuntu0.4_sparc.deb
  http://ports.ubuntu.com/pool/main/a/apache2/apache2.2-common_2.2.8-1ub untu0.4_sparc.deb


• Ubuntu apache2_2.2.8-1ubuntu0.4_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/a/apache2/apache2_2.2.8-1u buntu0.4_all.deb

Apple Mac OS X 10.5.1

• Apple MacOSXUpdCombo10.5.7.dmg
  http://support.apple.com/downloads/DL827/MacOSXUpdCombo10.5.7.dmg

Apple Mac OS X 10.5.2

• Apple MacOSXUpdCombo10.5.7.dmg
  http://support.apple.com/downloads/DL827/MacOSXUpdCombo10.5.7.dmg

Apple Mac OS X 10.5.3

• Apple MacOSXUpdCombo10.5.7.dmg
  http://support.apple.com/downloads/DL827/MacOSXUpdCombo10.5.7.dmg

Apple Mac OS X 10.5.4

• Apple MacOSXUpdCombo10.5.7.dmg
  http://support.apple.com/downloads/DL827/MacOSXUpdCombo10.5.7.dmg

Apple Mac OS X 10.5.6

• Apple MacOSXUpd10.5.7.dmg
  http://support.apple.com/downloads/DL826/MacOSXUpd10.5.7.dmg

MandrakeSoft Corporate Server 3.0

• Mandriva apache2-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-common-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-devel-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-manual-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-mod_cache-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-mod_dav-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-mod_deflate-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-mod_disk_cache-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-mod_file_cache-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-mod_ldap-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-mod_mem_cache-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-mod_proxy-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-mod_ssl-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-modules-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache2-source-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva libapr0-2.0.48-6.18.C30mdk.i586.rpm
  http://www.mandriva.com/en/download/

MandrakeSoft Corporate Server 4.0 x86_64

• Mandriva apache-base-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-devel-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-htcacheclean-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_authn_dbd-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_cache-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dav-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_dbd-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_deflate-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_disk_cache-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_file_cache-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ldap-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_mem_cache-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_proxy_ajp-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_ssl-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mod_userdir-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-modules-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-prefork-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-mpm-worker-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/


• Mandriva apache-source-2.2.3-1.5.20060mlcs4.x86_64.rpm
  http://www.mandriva.com/en/download/

Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability

References:

• Apache Homepage (Apache Software Foundation)
  
• Apache httpd 2.0 vulnerabilities (Apache Software Foundation)
  
• mod_proxy_ftp (Apache Software Foundation)
  
• PM10658: IBM HTTP SERVER 2.0.47 CUMULATIVE INTERIM FIX (IBM)
  
• Revision 682868 (Apache Software Foundation)
  
• Revision 682871 (Apache Software Foundation)
  
• Apache HTTP Server mod_proxy_ftp Wildcard Characters Cross-Site Scripting ([email protected])
  
• Apache HTTP Server 2.2.10 Released (Apache)
  
• Fix list for IBM HTTP Server Version 6.0.2 (IBM)
  
• PK70937: Z/OS IBM HTTP SERVER FOR WEBSPHERE (POWERED BY APACHE) FIX PACK 6.1.0.2 (IBM)
  
• RHSA-2008:0966 Red Hat Application Stack v2.2 enhancement update (Red Hat)
  
• September 13, 2011 - Director multiple Apache vulnerabilities (Blue Coat)
  
• Solution 247666: Security Vulnerabilities in the Apache 2.0 'mod_proxy_http' and (Sun)
  
• Vulnerability Note VU#663763 Apache mod_proxy_ftp XSS vulnerability (US-CERT)