CVE-2005-1909

Name of the Vulnerable Software and Affected Versions 602LAN SUITE version 2004

Description The issue allows remote attackers to make it more difficult for the administrator to read portions of log files via a "<!-" sequence in an HTTP GET request in the logon, possibly due to a cross-site scripting (XSS) vulnerability.

Recommendations For 602LAN SUITE version 2004, as a temporary workaround, consider restricting access to the logon feature until a patch is available. Avoid using the HTTP GET request in the logon feature with the "<!-" sequence until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.