CVE-2012-0216 in Debian and Apache Products
Published on April 22, 2012

The default configuration of the apache2 package in Debian GNU/Linux squeeze before 2.2.16-6+squeeze7, wheezy before 2.2.22-4, and sid before 2.2.22-4, when mod_php or mod_rivet is used, provides example scripts under the doc/ URI, which might allow local users to conduct cross-site scripting (XSS) attacks, gain privileges, or obtain sensitive information via vectors involving localhost HTTP requests to the Apache HTTP Server.

Vendor Advisory NVD

Products Associated with CVE-2012-0216

stack.watch emails you whenever new vulnerabilities are published in Debian Apache2 or Apache HTTP Server. Just hit a watch button to start following.

Debian Apache2

Apache HTTP Server

Exploit Probability

EPSS

0.05%

Percentile

15.89%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2012-0216 in Debian and Apache ProductsPublished on April 22, 2012

Products Associated with CVE-2012-0216

Exploit Probability

CVE-2012-0216 in Debian and Apache Products
Published on April 22, 2012