Potential Cross-site scripting in WebSphere Application Server Admin Console (CVE-2017-1380)
PI82078 resolves the following problem:
ERROR DESCRIPTION:
Potential Cross-site scripting in WebSphere Application Server Admin Console (CVE-2017-1380)
PROBLEM SUMMARY:
Potential Cross-site scripting in WebSphere Application Server Admin Console (CVE-2017-1380).
PROBLEM CONCLUSION:
Code was updated to remove the vulnerability.
Please download the UpdateInstaller below to install this fix.
[{"PRLabel":"UpdateInstaller","PRLang":"US English","PRSize":"7250000","PRPlat":{"label":"AIX","code":"PF002"},"PRURL":"http://www.ibm.com/support/docview.wss?rs=180&uid=swg21205991"}]
Please review the readme.txt for detailed installation instructions.
[{"INLabel":"V70 Readme","INLang":"US English","INSize":"4912","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI82078/7.0.0.43/readme.txt"},{"INLabel":"V80 Readme","INLang":"US English","INSize":"2230","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI82078/8.0.0.13/readme.txt"},{"INLabel":"V85 Readme","INLang":"US English","INSize":"2258","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI82078/8.5.5.11/readme.txt"},{"INLabel":"V90 Readme","INLang":"US English","INSize":"2158","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI82078/9.0.0.4/readme.txt"}]
On
[{"DNLabel":"7.0.0.31-WS-WAS-IFPI82078","DNDate":"07-10-2017","DNLang":"US English","DNSize":"9501","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%2FWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=7.0.0.31-WS-WAS-IFPI82078&includeSupersedes=0","DNURL_FTP":null,"DDURL":null},{"DNLabel":"8.0.0.8-WS-WAS-IFPI82078","DNDate":"07-10-2017","DNLang":"US English","DNSize":"267573","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%2FWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=8.0.0.8-WS-WAS-IFPI82078&includeSupersedes=0","DNURL_FTP":null,"DDURL":null},{"DNLabel":"8.5.5.1-WS-WAS-IFPI82078","DNDate":"07-10-2017","DNLang":"US English","DNSize":"268483","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%2FWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=8.5.5.1-WS-WAS-IFPI82078&includeSupersedes=0","DNURL_FTP":null,"DDURL":null},{"DNLabel":"9.0.0.0-WS-WAS-IFPI82078","DNDate":"07-10-2017","DNLang":"US English","DNSize":"259913","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%2FWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=9.0.0.0-WS-WAS-IFPI82078&includeSupersedes=0","DNURL_FTP":null,"DDURL":null}]
[{"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF013","label":"Inspur K-UX"},{"code":"PF016","label":"Linux"},{"code":"PF022","label":"OS X"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF014","label":"iOS"},{"code":"PF035","label":"z\/OS"}],"Version":"7.0.0.31;7.0.0.33;7.0.0.35;7.0.0.37;7.0.0.39;7.0.0.41;7.0.0.43;8.0.0.10;8.0.0.11;8.0.0.12;8.0.0.13;8.0.0.8;8.0.0.9;8.5.5.1;8.5.5.10;8.5.5.11;8.5.5.2;8.5.5.3;8.5.5.4;8.5.5.5;8.5.5.6;8.5.5.7;8.5.5.8;8.5.5.9;9.0;9.0.0.1;9.0.0.2;9.0.0.3;9.0.0.4","Edition":"Advanced;Base;Developer;Enterprise;Express;Network Deployment;Single Server","Line of Business":{"code":"LOB45","label":"Automation"}}]
Problems (APARS) fixed
Problems (APARS) fixed