CVE-2013-0571

Name of the Vulnerable Software and Affected Versions IBM Document Connect for Application Support Facility (DC4ASF) version 1.0.0.1217 and earlier

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via a crafted URL. This can be exploited by sending a malicious URL to the victim.

Recommendations For versions 1.0.0.1217 and earlier, update to version 1.0.0.1218 or later to resolve the issue. As a temporary workaround, consider restricting access to the DC4ASF application until the update is applied.