SNS Vulnerability

IBM InfoSphere Information Server Dojo Toolkit and XML4C Parser Vulnerabilities

Description

IBM has acknowledged multiple vulnerabilities in IBM InfoSphere Information Server, which can be exploited by malicious users to cause a DoS (Denial of Service) and by malicious people to conduct cross-site scripting attacks.
For more information:
SA62093 (#4)
SA62590
The vulnerabilities are reported in versions prior to 11.3.1.1.

Vulnerable Products

Vulnerable Software:
IBM InfoSphere Information Server 11.x

Solution

Update to version 11.3.1.1.

CVE

CVE-2014-8917
CVE-2014-8901

References

IBM (JR52127
JR52145
JR52264
JR52176):
https://www.ibm.com/support/docview.wss?uid=swg21694332
https://www.ibm.com/support/docview.wss?uid=swg21696312

Vulnerability Manager Detection

IPS Protection

ASQ Engine alarm	Available Since
XSS - Prevention - GET : suspicious 'iframe' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious 'meta' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious tag with event found in URL	3.2.0
XSS - Prevention - GET : suspicious 'applet' tag found in URL	3.2.0
XSS - Phishing : suspicious 'div' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious 'style' attribute found in URL	3.2.0
XSS - Prevention - GET : suspicious 'img' tag found in URL	3.2.0
XSS - Phishing : suspicious 'a' tag found in URL	3.2.0
XSS - Prevention - GET : cookie access attempt using script language found in URL	3.2.0
XSS - Prevention - GET : suspicious 'embed' tag found in URL	3.2.0
XSS - Prevention - GET : suspicious 'object' tag found in URL	3.2.0
XSS - Phishing : suspicious 'form' tag found in URL	3.2.0
XSS - Prevention - GET : javascript code found in URL	3.2.0
XSS - Prevention - GET : evasion attempt using tag characters encoding in URL	3.2.0
XSS - Prevention - GET : suspicious 'style' tag found in URL	3.2.0
XSS - Phishing : suspicious 'link' tag found in URL	3.2.0
XSS - Prevention - GET : 'script' tag found in URL	3.2.0
XSS - Prevention - GET : 'location' javascript object found in URL	3.2.0
XSS - Prevention - GET : suspicious 'div' tag found in URL	3.2.0

Risk level

Low

Vulnerability First Public Report Date

2015-03-10

Target Type

Server

Possible exploit

Remote