The host is running IBM WebSphere Application Server and is prone to Cross-site Scripting vulnerability.
Successful exploitation will let attackers to conduct Cross-site scripting attacks. Impact Level: Application
Upgrade to IBM WAS version 184.108.40.206, 220.127.116.11 or 18.104.22.168, For updates refer to http://www.ibm.com/developerworks/downloads/ws/was/
The flaw is due to an error in the Administration Console, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
IBM WAS Version 6.0 before 22.214.171.124, 6.1 before 126.96.36.199 and 7.0 before 188.8.131.52
- Check for bdir.htr files
- bozotic HTTP server Information Disclosure Vulnerability
- httpdx Space Character Remote File Disclosure Vulnerability
- IBM WebSphere Application Server Admin Console Cross-site Scripting Vulnerability
- Acme thttpd and mini_httpd Terminal Escape Sequence in Logs Command Injection Vulnerability