IBM Lotus Notes Web Application XSS Vulnerability (Win)

Summary
This host is installed with IBM Lotus Notes and is prone to cross site scripting vulnerability.
Impact
Successful exploitation will allow attacker to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Impact Level: System/Application
Solution
Upgrade to IBM Lotus Notes 8.5.3 FP3 or later, For updates refer to http://www-01.ibm.com/support/docview.wss?uid=swg21619604
Insight
An error exists within the Web applications which allows an attacker to read or set the cookie value by injecting script.
Affected
IBM Lotus Notes Version 8.x before 8.5.3 FP3 on windows
References