[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [DSECRG-09-009] APC PowerChute Network Shutdown's Web Interface - XSS vulnerability
- To: Digital Security Research Group <research@xxxxxxx>
- Subject: Re: [DSECRG-09-009] APC PowerChute Network Shutdown's Web Interface - XSS vulnerability
- From: "Vladimir '3APA3A' Dubrovin" <3APA3A@xxxxxxxxxxxxxxxx>
- Date: Thu, 26 Feb 2009 21:46:28 +0300
Dear Digital Security Research Group,
--Thursday, February 26, 2009, 7:40:50 PM, you wrote to
bugtraq@xxxxxxxxxxxxxxxxx:
DSRG> Application: APC PowerChute Network Shutdown's Web
Interface
DSRG> Vendor URL: http://www.apc.com/
DSRG> Bug: XSS/Response Splitting
DSRG> Solution: Use Firewall
Just wonder: how can firewall to protect against XSS/response splitting?
--
Skype: Vladimir.Dubrovin
~/ZARAZA http://securityvulns.com/