Vulnerability

IBM WebSphere Application Server URL Rewriting Cross-site Scripting Vulnerability

Publish date: July 21, 2015

SEVERITY

CRITICAL

//  ADVISORY DATE

21 JUL 2015


DESCRIPTION

Cross-site scripting (XSS) vulnerability in the URL rewriting feature in IBM WebSphere Application Server 7.x before 7.0.0.37, 8.0.x before 8.0.0.10, and 8.5.x before 8.5.5.4 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

SOLUTION

Trend Micro Deep Security DPI Rule Number: 1000552

Featured Stories

Connect with us on