Intrusion Prevention

IBM.Rational.Clearcase.Pathinfo.XSS

Description

This indicates an attack attempt against a Cross Site Scripting vulnerability in IBM Rational Clearcase.
The vulnerability is caused by an error when the vulnerable software handles a malicious request. It allows a remote attacker to execute arbitrary an script via sending a crafted web request.

Affected Products

ClearCase RWP server in IBM Rational ClearCase 7.0.0 before 7.0.0.4, and 7.0.1.1-RATL-RCC-IFIX02 and possibly other 7.0.1 versions before 7.0.1.3

Impact

System Compromise

Recommended Actions

Upgrade to the latest version.

CVE References

CVE-2008-5330