Apache Httpd CVE-2008-0005 Cross Site Scripting Vulnerability
Description
A workaround was added in the mod_proxy_ftp module. On sites where mod_proxy_ftp is enabled and a forward proxy is configured, a cross-site scripting attack is possible against Web browsers which do not correctly derive the response character set following the rules in RFC 2616.
Affected Applications
Apache Httpd