Liferay Enterprise Portal 'User-Agent' HTTP Header Script Injection Vulnerability

Liferay Enterprise Portal 'User-Agent' HTTP Header Script Injection Vulnerability

Solution:
The vendor released fixes and an advisory to address this issue. Please see the references for more information.

Liferay Enterprise Portal 4.3.6

Liferay liferay-portal-src-4.4.0.zip
http://downloads.sourceforge.net/lportal/liferay-portal-src-4.4.0.zip? modtime=1201282487&big_mirror=1