Computerworld

Flaws found in NetGear ProSafe VPN Firewall switch

SecuriNews is reporting two vulnerabilities in the NetGear ProSafe VPN Firewall 8 switch (FVS318). Attackers could bypass URL filters by using HEX characters in the URL. Also, the event log could contain URLs with JavaScript in them. This script would be executed in the administrator's browser. Currently, there is no workaround or patch. For more, go to: http://www.securinews.com/vuln.htm?vulnid=103