CVE-2004-1512

Name of the Vulnerable Software and Affected Versions 04WebServer version 1.42

Description A cross-site scripting (XSS) issue exists due to the failure to properly quote script code in the URL within the resulting default error page of Response default.html. This allows remote attackers to execute arbitrary web script or HTML.

Recommendations For version 1.42, ensure that script code in URLs is properly quoted in the default error page to prevent XSS attacks. As a temporary workaround, consider restricting access to the default error page until a proper fix is applied.