Hi All
A penetration test of our Environment BI4.1 SP3/Tomcat 7 has highlighted a CSS vulnerability in WEBI can anyone point me in the right direction for a patch the only thing I can find is note 1931399 but that seem to refer to BI4.0 SP1 and 2
The same test also highlighted issues with
verbose error messages (full stack traces in webi ) - can these be suppressed?
Click Jacking(UI Redress Attack )
A number of issues with Tomcat ( all fixable with a quick trip through the tomcat forums.)
