Code: p977 Severity: Notice
Description: This event is generated when an attempt is made to access cvslog.cgi on an internal web server. This may indicate an attempt to exploit a cross-site scripting vulnerability in Mozilla Bonsai 1.3. Impact: Arbitrary code execution, possible session hijack. Corrective: Upgrade to a newer build of Mozilla Bonsai 1.3. If you are running Mozilla Bonsai on Debian 3.0, Debian has provided patches at http://security.debian.org/pool/updates/main/b/bonsai/.
|
