IBM Tivoli Continuous Data Protection for Files is prone to a cross-site scripting vulnerability.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site and to steal cookie-based authentication credentials.
IBM Tivoli Continuous Data Protection for Files 18.104.22.168 is vulnerable; other versions may also be affected.
Published: Apr 14 2009 12:00AM
Updated: Apr 15 2009 12:16AM
REFERENCIA DE LA VULNERABILIDAD