What is CVE-2009-0796?

CVE-2009-0796 is a vulnerability in N/a. Published 2009-04-07.

Is CVE-2009-0796 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2009-0796

Cross-site scripting (XSS) vulnerability in Status.pm in Apache::Status and Apache2::Status in mod_perl1 and mod_perl2 for the Apache HTTP Server, when /perl-status is accessible, allows remote attackers to inject arbitrary web script or H…

EPSS: 0.600 (98.3th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

1021988 (vdb-entry, x_refsource_SECTRACK)
svn.apache.org/viewvc (x_refsource_CONFIRM)
MDVSA-2009:091 (vendor-advisory, x_refsource_MANDRIVA)
support.apple.com/kb/HT4435 (x_refsource_CONFIRM)
bugzilla.redhat.com/show_bug.cgi (x_refsource_CONFIRM)
APPLE-SA-2010-11-10-1 (vendor-advisory, x_refsource_APPLE)
1021508 (vendor-advisory, x_refsource_SUNALERT)
ADV-2009-0943 (vdb-entry, x_refsource_VUPEN)
[modperl] 20090401 [SECURITY] [CVE-2009-0796] Vulnerability found in Apache::Status and Apache2::Status (mailing-list, x_refsource_MLIST)
launchpad.net/bugs/cve/2009-0796 (x_refsource_MISC)

Frequently asked questions

What is CVE-2009-0796?: CVE-2009-0796 is a vulnerability in N/a. Published 2009-04-07.
Is CVE-2009-0796 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.