Published:2008/02/21  Last Updated:2008/02/21

Information from IBM

Vulnerability ID:JVN#42381549
Title:Internet Scanner reporting engine vulnerable to cross-site scripting

This is a statement from the vendor itself with no modification by JPCERT/CC.

IBM ISS is aware of this issue in the Internet Scanner reporting engine. Although IBM ISS does not believe that this issue poses a significant or likely threat, concerned customers can contact Customer Support for a patch that disables this functionality to prevent any possible misuse.