Test Kennung:	1.3.6.1.4.1.25623.1.0.809340
Kategorie:	Web Servers
Titel:	IBM WebSphere Application Server Liberty < 16.0.0.3 XSS Vulnerability
Zusammenfassung:	IBM WebSphere Application Server Liberty is prone to a; cross-site scripting (XSS) vulnerability.
Beschreibung:	Summary: IBM WebSphere Application Server Liberty is prone to a cross-site scripting (XSS) vulnerability. Vulnerability Insight: Multiple flaws are due to - An improper sanitization of input to vectors involving 'OpenID' Connect clients. - An improper handling of exceptions when a default error page does not exist. Vulnerability Impact: Successful exploitation may allow a remote authenticated user to inject arbitrary web script. Affected Software/OS: IBM WebSphere Application Server Liberty prior to version 16.0.0.3. Solution: Update to version 16.0.0.3 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-3042 AIX APAR: PI64790 http://www-01.ibm.com/support/docview.wss?uid=swg1PI64790 BugTraq ID: 92985 http://www.securityfocus.com/bid/92985 Common Vulnerability Exposure (CVE) ID: CVE-2016-0378 AIX APAR: PI54459 http://www-01.ibm.com/support/docview.wss?uid=swg1PI54459 BugTraq ID: 93143 http://www.securityfocus.com/bid/93143
Copyright	Copyright (C) 2016 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.