Skip to main content

PK69316: CQ Web Cross-site scripting vulnerability

 

APAR status

  • Closed as program error.

Error description

  • CQ Web Cross-site scripting vulnerability problem. Some of the p
roblem fixed in 2007D - 2008B. But there are still 16 files have
 Cross-site scripting problem.

Local fix

  • 



Problem summary


    

  • A security vulnerability exists in ClearQuest Web.

    



Problem conclusion


    

  • A fix is available in ClearQuest versions 7.0.0.4 and 7.0.1.3

    



Temporary fix


    

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    PK69316
    • 

  • Reported component name
    CLEARQUEST WIN
    • 

  • Reported component ID
    5724G3600
    • 

  • Reported release
    701
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt
    • 

  • Submitted date
    2008-07-21
    • 

  • Closed date
    2008-12-01
    • 

  • Last modified date
    2008-12-01
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    CLEARQUEST WIN
    • 

  • Fixed component ID
    5724G3600
    • 



Applicable component levels


    

  • R700  PSY
       UP
    • 

  • R701  PSY
       UP
    • 

  • R603  PSN
       UP
    • 

  • R604  PSN
       UP
    • 

  • R605  PSN
       UP
    • 

  • R606  PSN
       UP
    • 

  • R60W  PSN
       UP
    • 

  • R710  PSN
       UP
    • 








		


		
Copyright and trademark information

		

			
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide.  Other product and service names might be trademarks of IBM or other companies.  A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.

		

		


		

		
Rate this page

		

			
Please take a moment to complete this form to help us better serve you.

		

		
		

		
		
		
		
		
		
		

		

			
This material provides me with the information I need.

		

		

		

			 

			 

			 

			 

			 

		

		

		

  		
		

		

			
This material is clear and easy to understand.

		

		

		

			 

			 

			 

			 

			 

		

		

		

  		

		

		

			
Did the information help you to achieve your goal?

		

		

		

			
			
			
		

		

		


		

		

			
What updates, improvements, or related information would you like to see in this document?

		

		

			

		

		


		

			
Your response will be used to improve our document content. Requests for assistance, if applicable, should be submitted through your normal support channel as we cannot respond from this site.

		

		

			
Input the verification number to submit feedback:

		

		

			


		

		

		

			

		

		

		


		

		
		





Close [x]









   



Maintenance Window
 








     

  • The IBM Technical support pages, including the Downloads and Drivers Finders will be temporarily unavailable for up to 4 hours due to planned maintenance. This will take place between Saturday November 14, 2009 9:00 PM ET and Sunday, November 15, 2009 7:00 AM ET. During the maintenance, you will not be able to search or download from these pages.
    • 






   
















Close [x]









   



Unscheduled Maintenance Window









There is no unscheduled maintenance scheduled at this time.





   










		

			


			

				





		

		
		


		
Document information

		

			
Product categories:

		
		
Software
Software Development
Change, Configuration, & Release Management
Rational ClearQuest

		
		

		
			
Software version:

			
701

			

		

		

		
			
Reference #:

			

		PK69316
			

			

		

			
IBM Group:

			
Software Group

			

			
Modified date:

			
2008-12-01

		

		


		
Translate my page

		

			

			

			
			

			
			
			
			

		

		


		
Rate this page

		

			
		

		


		

		
			
Availability Notices