Intrusion Prevention

HTTP.Referer.Header.XSS

Description

This indicates an attempt to exploit a Cross Site Scripting vulnerability in ZyXEL ZYWall 100.
The vulnerable application fails to sanitize user supplied input. A successful attack may allow the attacker to execute arbitrary script code in a user's browser.

Affected Products

ZyXEL ZYWall 100

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patches.

CVE References

CVE-2008-2167