Re: [Full-disclosure] Universal PDF XSS After Party(posible solution)

rsion to version. -- Thank you, Darren Bounds On 1/4/07, Noe Espinoza M. <[EMAIL PROTECTED]> wrote: We need to force to the users do download the pdf files And we can add to the httpd.conf or .htaccess the next code SetEnvIf Request_URI "\.pdf$" requested_pdf=pdf Header ad

Juniper Networks DX Web Administration Persistent System Log XSS Vulnerability

Juniper Networks DX Web Administration Persistent System Log XSS Vulnerability July 10, 2006 Product Overview: The Juniper Networks (Redline) DX application acceleration platform delivers a complete data center acceleration solution for web-enabled and IP-based business applications. Vulnerabil

Cisco Secure ACS Weak Session Management Vulnerability

ecure ACS to restrict access to the web interface from only 'secure' network address space. Cisco has confirmed this vulnerability and is working on a patch. References: http://www.cisco.com/en/US/products/sw/secursw/ps2086/index.html -- Thank you, Darren Bounds

Trend Micro Control Manager (TMCM) Persistent XSS Vulnerability

ected Versions: Trend Micro Control Manager 3.5 Olders versions may also be affected. Workarounds: Control network access to the TMCM web console. References: http://www.trendmicro.com/en/products/management/tmcm/ Vendor was contacted on several occasions with no response. -- Thank you, Darren Bounds