Intrusion Prevention

Generic.Referer.XSS.Attempt

Description

This attack represents a cross-site scripting attack through the referer field of HTTP. This field is used in logfile analysis and some server side scripting. By injecting javascript into this field, code can be executed through the webpage and be used to steal session and login information.

Affected Products

N/A

Impact

Arbitrary script injection.

Recommended Actions

N/A