[htdig] Htdig vulnerability

ywang Mon, 21 Feb 2005 13:52:37 -0800

Hello,

According to Security Tracker, htdig has input validation hole that allows 
cross-site scripting attacks:
http://securitytracker.com/alerts/2005/Feb/1013078.html.


At the bottom of the page, I can see Gentoo, RadHat, and Debian has issued 
fixes to their htdig releases. We are using the one directly from htdig.org. 
But I cannot see any updates or patches from Htdig's own website. Any 
information regarding this issue? 

Thanks!

Wang





-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_ide95&alloc_id396&op=click
_______________________________________________
ht://Dig general mailing list: <[email protected]>
ht://Dig FAQ: http://htdig.sourceforge.net/FAQ.html
List information (subscribe/unsubscribe, etc.)
https://lists.sourceforge.net/lists/listinfo/htdig-general

[htdig] Htdig vulnerability

Reply via email to