Vulnerability Details CVE-2008-0694
Cross-site scripting (XSS) vulnerability in the HTTP Server in IBM OS/400 V5R3M0 and V5R4M0 allows remote attackers to inject arbitrary web script or HTML via the Expect HTTP header.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.1%
CVSS Severity
CVSS v2 Score 4.3
References
- http://secunia.com/advisories/28744
- http://www-1.ibm.com/support/docview.wss?uid=nas22f5a0f082f6821c4862573e10041f7bd
- http://www.securityfocus.com/bid/27595
- http://www.vupen.com/english/advisories/2008/0397
- http://secunia.com/advisories/28744
- http://www-1.ibm.com/support/docview.wss?uid=nas22f5a0f082f6821c4862573e10041f7bd
- http://www.securityfocus.com/bid/27595
- http://www.vupen.com/english/advisories/2008/0397