locked
HIPS blocks access to Project Server 2003 PWA RRS feed

  • Question

  • In our organization implemented a Proventia HIPS.
     After a while, some users are blocked access to Project Server 2003 PWA
     Project Server server is W2K3 Std SP2.
     Analyzing the problem was detected that the HIPS was blocking access to PWA, and detecting a vulnerability.
     The error message is as follows: "HTTP_AuthResponse_Possible_CSRF" which is related to "HTTP Cross-Site Request Forgery. "

     The PWA is access to users within the intranet.
     As we can fix or repair this vulnerability on the site of Project Server 2003 PWA?
     The idea is not having to include every user as an exception in HIPS.

    Thursday, March 24, 2011 7:17 PM

Answers