IBM WebSphere Application Server Administration Console Cross Site Scripting Vulnerability

06/24/10 08:42, by Dennis van Remortel, Categories: IBM, Websphere, security

Link: http://www.securityfocus.com/bid/39051/info

Bugtraq ID: 39051
Class: Input Validation Error
CVE: CVE-2010-0768
Remote: Yes
Local: No
Published: Mar 30 2010 12:00AM
Updated: Jun 23 2010 08:38PM
Credit: IBM
Vulnerable:
IBM Websphere Application Server 7.0 3
IBM Websphere Application Server 7.0.8
IBM Websphere Application Server 6.1.2
IBM Websphere Application Server 6.1.9
IBM Websphere Application Server 6.1.8
IBM Websphere Application Server 6.1.7
IBM Websphere Application Server 6.1.6
IBM Websphere Application Server 6.1.5
IBM Websphere Application Server 6.1.4
IBM Websphere Application Server 6.1.3
IBM Websphere Application Server 6.1.25
IBM Websphere Application Server 6.1.23
IBM Websphere Application Server 6.1.22
IBM Websphere Application Server 6.1.21
IBM Websphere Application Server 6.1.20
IBM Websphere Application Server 6.1.2
IBM Websphere Application Server 6.1.19
IBM Websphere Application Server 6.1.18
IBM Websphere Application Server 6.1.17
IBM Websphere Application Server 6.1.15
IBM Websphere Application Server 6.1.14
IBM Websphere Application Server 6.1.13
IBM Websphere Application Server 6.1.12
IBM Websphere Application Server 6.1.11
IBM Websphere Application Server 6.1.10
IBM Websphere Application Server 6.1.1
IBM Websphere Application Server 6.1
IBM Websphere Application Server 6.0.2.9
IBM Websphere Application Server 6.0.2.7
IBM Websphere Application Server 6.0.2.5
IBM Websphere Application Server 6.0.2.39
IBM Websphere Application Server 6.0.2.35
IBM Websphere Application Server 6.0.2.33
IBM Websphere Application Server 6.0.2.31
IBM Websphere Application Server 6.0.2.3
IBM Websphere Application Server 6.0.2.29
IBM Websphere Application Server 6.0.2.27
IBM Websphere Application Server 6.0.2.25
IBM Websphere Application Server 6.0.2.24
IBM Websphere Application Server 6.0.2.23
IBM Websphere Application Server 6.0.2.22
IBM Websphere Application Server 6.0.2.21
IBM Websphere Application Server 6.0.2.17
IBM Websphere Application Server 6.0.2.15
IBM Websphere Application Server 6.0.2.13
IBM Websphere Application Server 6.0.2.11
IBM Websphere Application Server 6.0.2.1
IBM Websphere Application Server 6.0.2
IBM Websphere Application Server 6.0.1
IBM Websphere Application Server 6.0.7
IBM Websphere Application Server 6.0
IBM Websphere Application Server 7.0.0.7
IBM Websphere Application Server 7.0.0.5
IBM Websphere Application Server 7.0.0.1
IBM Websphere Application Server 7.0
IBM Websphere Application Server 6.1.0.29
IBM Websphere Application Server 6.1.0.27
IBM Websphere Application Server 6.0.2.19
IBM Websphere Application Server 6.0.2 Fix Pack 17

Not Vulnerable:
IBM Websphere Application Server 7.0.9
IBM Websphere Application Server 6.1.0.31
IBM Websphere Application Server 6.0.2.41

IBM WebSphere Application Server (WAS) is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.

An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.

Versions prior to WAS 7.0.0.9, 6.1.0.31, and 6.0.2.4 are vulnerable.

IBM WebSphere Application Server Administration Console Cross Site Scripting Vulnerability

Attackers can exploit this issue by enticing an unsuspecting victim into following a malicious URI.

Solution:
The vendor has released updates. Please see the references for details.

References:
* IBM APAR PK97376 (IBM)
* IBM Websphere Homepage (IBM)
* WebSphere Application Server Administration Console Cross-Site Scripting (IBM)