Apache "Expect" Header Cross-Site Scripting Vulnerability
I noticed Secunia reports a XSS vulnerability.
Apache community already corrected this one, but originally
they did not treat a security flaw.
In the Secunia Advisory, it seems Amit Klein shows that
this can be exploited via a specially crafted Flash file.
They also provide a Test Case.
Redhat seems to provide a security update.
Is it important?