CVE-2011-4752

Name of the Vulnerable Software and Affected Versions SmarterTools SmarterStats version 6.2.4100

Description The issue involves SmarterTools SmarterStats sending incorrect Content-Type headers for certain resources. This could allow remote attackers to have an unspecified impact by leveraging an interpretation conflict involving frmCustomReport.aspx and certain other files. It is possible that only clients, not the SmarterStats product, could be affected by this issue.

Recommendations For SmarterTools SmarterStats version 6.2.4100, consider restricting access to the frmCustomReport.aspx file until a fix is available. Additionally, review and correct the Content-Type headers for the affected resources to prevent potential interpretation conflicts.