Test ID:	1.3.6.1.4.1.25623.1.0.801647
Category:	Web Servers
Title:	IBM WebSphere Application Server 7.x < 7.0.0.13 Multiple Vulnerabilities
Summary:	IBM WebSphere Application Server is prone to multiple; vulnerabilities.
Description:	Summary: IBM WebSphere Application Server is prone to multiple vulnerabilities. Vulnerability Insight: The following vulnerabilities exist: - Cross-site scripting (XSS) in the administrative console due to improper filtering on input values - Cross-site scripting (XSS) in the Integrated Solution Console due to improper filtering on input values Vulnerability Impact: Successful exploitation will let attackers to conduct cross-site scripting attacks and cause a Denial of Service (DoS). Affected Software/OS: IBM WebSphere Application Server versions 7.0 prior to 7.0.0.13. Solution: Update to version 7.0.0.13 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0784 AIX APAR: PM17046 http://www-01.ibm.com/support/docview.wss?uid=swg1PM17046 AIX APAR: PM23872 http://www-01.ibm.com/support/docview.wss?uid=swg1PM23872 BugTraq ID: 43874 http://www.securityfocus.com/bid/43874 http://secunia.com/advisories/41722 http://www.vupen.com/english/advisories/2010/2595 XForce ISS Database: was-admins-console-xss(62948) https://exchange.xforce.ibmcloud.com/vulnerabilities/62948 Common Vulnerability Exposure (CVE) ID: CVE-2010-4220 AIX APAR: PM11777 http://www-01.ibm.com/support/docview.wss?uid=swg1PM11777
Copyright	Copyright (C) 2010 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.