>> Apache Web Server "mod_imagemap" Cross Site Scripting Vulnerability
Title : Apache Web Server "mod_imagemap" Cross Site Scripting Vulnerability VUPEN ID : VUPEN/ADV-2007-4202 CVE ID : CVE-2007-5000
Rated as : Low Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2007-12-13
Technical Description
A vulnerability has been identified in Apache, which could be exploited to conduct cross site scripting attacks. This issue is caused by an input validation error in the "mod_imagemap" module when processing user-supplied data while an imagemap file is publicly available, which could be exploited by attackers to cause arbitrary scripting code to be executed by the user's browser.
