Candidate: CVE-2008-7250
PublicDate: 2009-12-30 22:30:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-7250
Description:
 Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator
 (Sarg) 2.2.4 allows remote attackers to inject arbitrary web script or HTML
 via a JavaScript onload event in the User-Agent header, which is not
 properly handled when displaying the Squid proxy log. NOTE: this issue
 exists because of an incomplete fix for CVE-2008-1168.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: low
Discovered-by:
Assigned-to: 
CVSS: 

Patches_sarg:
upstream_sarg: released (2.2.5)
dapper_sarg: ignored (reached end-of-life)
hardy_sarg: not-affected (2.2.5-1ubuntu0.8.04.1)
intrepid_sarg: not-affected
jaunty_sarg: not-affected
karmic_sarg: not-affected
devel_sarg: not-affected