Vulnerable Systems:
*InfoSphere Information Server 8.1 and prior
IBM InfoSphere Information Server contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input passed via the metadata workbench before returning it to the user. This may allow an attacker to create a specially crafted request that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.