Zeus Web Server Admin Interface VS_Diag.CGI Cross Site Scripting Vulnerability

Zeus Web Server Admin Interface VS_Diag.CGI Cross Site Scripting Vulnerability

Solution:
The vendor has stated that the upcoming release of Zeus 4.2r3 will not be vulnerable to this issue. The vendor has also stated that a patch will be available shortly from support@zeus.com. Affected users are advised to contact the vendor at support@zeus.com for further information.

Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.