CVE-2006-3918 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2006-3918 Interim 1 4 2023-12-09T02:17:42Z current 2021-05-30T12:36:26Z 2023-12-09T02:17:42Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2006-3918 http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apache HTTP Server 1.3 before 1.3.35, 2.0 before 2.0.58, and 2.2 before 2.2.2, does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which might allow cross-site scripting (XSS) style attacks using web client components that can send arbitrary headers in requests, as demonstrated using a Flash SWF file. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FKQAEGRZOJB6YFM4M3FC4X3CKT2TIDVU/#FKQAEGRZOJB6YFM4M3FC4X3CKT2TIDVU E-Mail link for SUSE-SA:2006:051 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/FMA66JEYEG6TK4BHLK2NBEKAZLDCMKJP/#FMA66JEYEG6TK4BHLK2NBEKAZLDCMKJP E-Mail link for SUSE-SA:2008:021 https://www.suse.com/support/security/rating/ SUSE Security Ratings http_protocol.c in (1) IBM HTTP Server 6.0 before 6.0.2.13 and 6.1 before 6.1.0.1, and (2) Apache HTTP Server 1.3 before 1.3.35, 2.0 before 2.0.58, and 2.2 before 2.2.2, does not sanitize the Expect header from an HTTP request when it is reflected back in an error message, which might allow cross-site scripting (XSS) style attacks using web client components that can send arbitrary headers in requests, as demonstrated using a Flash SWF file. CVE-2006-3918 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N