Published: 2007/06/19  Last Updated: 2008/04/07

Information from nec

Vulnerability ID:JVN#16535199
Title:Apache Tomcat Accept-Language Header Cross-Site Scripting Vulnerability
Status:Vulnerable

This is a statement from the vendor itself with no modification by JPCERT/CC.

* WebOTX Application Server is vulnerable.
- For more detail.
http://www.nec.co.jp/security-info/secinfo/nv08-003.html(only in Japanese)

update history

2008/04/07