Hi, experts.

I noticed Secunia reports a XSS vulnerability.
  http://secunia.com/advisories/21172/

Apache community already corrected this one, but originally
they did not treat a security flaw.
  http://svn.apache.org/viewvc?view=rev&revision=394965

In the Secunia Advisory, it seems Amit Klein shows that
this can be exploited via a specially crafted Flash file.
They also provide a Test Case.
  http://secunia.com/expect_header_cross-site_scripting_vulnerability_test/

Redhat seems to provide a security update.
  https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=200732

Is it important?

Kazu Nambo


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Reply via email to