Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: CGI abuses : XSS --> Category: attack

IBM WebSphere Application Server SOAP Connector Cross-Site Scripting Vulnerability Vulnerability Scan

Vulnerability Scan Summary
Checks for an XSS flaw in WebSphere Application Server's SOAP Connector

Detailed Explanation for this Vulnerability Test

Synopsis :

The remote SOAP server is vulnerable to a cross-site scripting attack.

Description :

The remote SOAP server fails to sanitize user input via the URI before
using it to generate dynamic XML content in an error page. An
unauthenticated remote attacker may be able to leverage this issue to
inject arbitrary XML into a user's browser.

See also :

Solution :

Apply version 5.0.2 Cumulative Fix 17 / 5.1.1 Cumulative Fix 12 /
6.0.2 Fix Pack 9, depending on the installed version of IBM WebSphere
Application Server.

Threat Level:

High / CVSS Base Score : 7.0

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.