JVN#89613370: i-HTTPD vulnerable to cross-site scripting

2014-12-09T00:00:00
ID JVN:89613370
Type jvn
Reporter Japan Vulnerability Notes
Modified 2014-12-09T00:00:00

Description

## Description

i-HTTPD is a web server for Windows. i-HTTPD contains a flaw in generating a directory index page, which may lead to a cross-site scripting (CWE-79).

## Impact

An arbitrary script may be executed on the user's web browser.

## Solution

Do not use i-HTTPD
i-HTTPD is no longer being developed or maintained. It is recommended to stop using i-HTTPD.

## Products Affected

  • i-HTTPD