Analog Logfile Script Code Injection Vulnerability

Analog is logfile analysis software which is capable of printing formatted logfiles in HTML. It will run on most Unix and Linux variants, as well as a number of other operating systems including Microsoft Windows.

Analog does not filter script code when analyzing logfiles. As a result, it is possible for an attacker to cause arbitrary script code to be included in web pages generated by Analog.


 

Privacy Statement
Copyright 2010, SecurityFocus