Preemptive Protection against Rational ClearQuest Cross Site Scripting Vulnerability
| Attack ID: | CPAI-2005-129 |
 |
|
| Publish Date: | |
|
|
| Category: | Cross Site Scripting |
|
|
| Vulnerable Systems: | Rational ClearQuest 2002 Rational ClearQuest 2003 |
|
|
| Source: | SmartDefense Research Center |
|
|
| Description: | Rational ClearQuest is a defect and change tracking tool. The application is vulnerable to cross-site scripting, caused by failure to properly sanitize user-supplied input. A remote attacker could craft a URL containing malicious script which will execute arbitrary code, once the link is clicked by the user. As a result, a remote attacker could take a variety of malicious actions with the privileges of the target user such as stealing sensitive user information. |
|
|
| Severity: | |
| Details: | The server does not properly sanitize input supplied to certain parameters prior to passing it to the user. The issue impacts both the ClearQuest Web client that uses Java technology and the ASP-based version. |
|
|
| Attack Detection: | Users of VPN-1 NG with Application Intelligence R54, R5 and R55W, users of VPN-1 NGX R60 and users of Connectra will identify attack attempts by the following logging entries: Log for R55: Attack Name: Cross Site Scripting Attack Information: reason: WSE0030001 cross site scripting detected in URL: 'script' |
|
|
| Solution: | Users of VPN-1 NG with Application Intelligence R54, R55, R55W, users of VPN-1 NGX R60 and users of Connectra who have applied the solution outlined in CPSA-2005-03 are preemptively protected against cross-site scripting vulnerabilities. |
|
|
| Industry Reference: | |
|
|
| Additional Information: | IBM |