CVE-2005-3506

Name of the Vulnerable Software and Affected Versions Sambar Server versions 6.3 BETA 2 and earlier

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is possible via the Remote Proxy Server or Proxy Filter IPs field.

Recommendations For Sambar Server versions 6.3 BETA 2 and earlier, consider disabling the proxy.asp functionality until a patch is available. Restrict access to the proxy.asp page to minimize the risk of exploitation. Avoid using the Remote Proxy Server or Proxy Filter IPs field in proxy.asp until the issue is resolved.