IBM Tivoli Federated Identity Manager Unspecified XSS
Medium Nessus Plugin ID 86317
SynopsisThe remote host has an application installed that is affected by an unspecified cross-site scripting vulnerability.
DescriptionThe version of IBM Tivoli Federated Identity Manager installed on the remote Windows host is affected by an unspecified cross-site scripting (XSS) vulnerability due to improper validation of user-supplied input.
An unauthenticated, remote attacker can exploit this, via a crafted URL, to arbitrary execute script in the user's browser session.
SolutionUpgrade to Tivoli Federated Identity Manager 184.108.40.206 / 220.127.116.11 / 18.104.22.168 or later.