You are viewing a plain text version of this content. The canonical link for it is here.

Posted to cvs@httpd.apache.org by jo...@apache.org on 2007/12/20 15:31:50 UTC

svn commit: r605941 - /httpd/test/trunk/perl-framework/t/security/CVE-2007-5000.t

Author: jorton
Date: Thu Dec 20 06:31:49 2007
New Revision: 605941

URL: http://svn.apache.org/viewvc?rev=605941&view=rev
Log:
- add test case for CVE-2007-5000

Added:
    httpd/test/trunk/perl-framework/t/security/CVE-2007-5000.t   (with props)

Added: httpd/test/trunk/perl-framework/t/security/CVE-2007-5000.t
URL: http://svn.apache.org/viewvc/httpd/test/trunk/perl-framework/t/security/CVE-2007-5000.t?rev=605941&view=auto
==============================================================================
--- httpd/test/trunk/perl-framework/t/security/CVE-2007-5000.t (added)
+++ httpd/test/trunk/perl-framework/t/security/CVE-2007-5000.t Thu Dec 20 06:31:49 2007
@@ -0,0 +1,18 @@
+use strict;
+use warnings FATAL => 'all';
+
+use Apache::Test;
+use Apache::TestUtil;
+use Apache::TestRequest;
+
+my $vars = Apache::Test::vars();
+
+plan tests => 2, need_imagemap;
+
+my $url = '/security/CVE-2005-3352.map/<foo>';
+
+my $r = GET $url;
+
+ok t_cmp($r->code, 200, "response code is OK");
+
+ok !t_cmp($r->content, qr/<foo>/, "URI was escaped in response");

Propchange: httpd/test/trunk/perl-framework/t/security/CVE-2007-5000.t
------------------------------------------------------------------------------
    svn:eol-style = native