CVE-2008-0717

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Edge Server
Vendor: CVE Published:; 12 February 2008

Summary

Cross-site scripting (XSS) vulnerability in Caching Proxy (CP) 5.1 through 6.1 in IBM WebSphere Edge Server, when CGI mapping rules are enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors that trigger injection into an error response.

References

http://www.vupen.com/english/advisories/2008/0446

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/27665

vdb-entryx_refsource_BID

http://www-1.ibm.com/support/docview.wss?uid=swg21294776

x_refsource_CONFIRM

Timeline

Vulnerability published
Feb 12, 2008
Vulnerability Reserved
Feb 11, 2008