torrentflux -- User-Agent XSS Vulnerability

2006-09-30T00:00:00
ID 72F21372-55E4-11DB-A5AE-00508D6A62DF
Type freebsd
Reporter FreeBSD
Modified 2006-10-15T00:00:00

Description

Steven Roddis reports that User-Agent string is not properly escaped when handled by torrentflux. This allows for arbitrary code insertion.