CVE-2006-4909

Name of the Vulnerable Software and Affected Versions Cisco Guard DDoS Mitigation Appliance versions prior to 5.1(6)

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via certain character sequences in a URL. This occurs when anti-spoofing is enabled and the appliance sends a meta-refresh, due to improper handling of specific character sequences.

Recommendations For versions prior to 5.1(6), update to version 5.1(6) or later to resolve the issue. As a temporary workaround, consider disabling anti-spoofing until a patch is applied. Restrict access to URLs that could be used to inject malicious scripts to minimize the risk of exploitation.