CVE-2007-5472

Name of the Vulnerable Software and Affected Versions: CA Host-Based Intrusion Prevention System (HIPS) versions prior to 8.0.0.93

Description: A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via requests that are written to logs for later display in the log viewer. This occurs due to improper handling of user input in the Server component.

Recommendations: For versions prior to 8.0.0.93, update to version 8.0.0.93 or later to resolve the issue.