Computer Security
[EN] securityvulns.ru no-pyccku


IBM Lotus Domino crossite scripting and open redirect
updated since 17.12.2012
Published:18.02.2013
Source:
SecurityVulns ID:12789
Type:remote
Threat Level:
5/10
Description:IBM Lotus Domino Web Server crossite scripting and open redirection.
Affected:IBM : Lotus Domino 8.5
CVE:CVE-2012-4844 (Cross-site scripting (XSS) vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
 CVE-2012-4842 (Open redirect vulnerability in the web server in IBM Lotus Domino 8.5.x through 8.5.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.)
Original documentdocumentMustLive, CSRF, XSS and Redirector vulnerabilities in IBM Lotus Domino (18.02.2013)
Files:Security Bulletin: IBM Lotus Domino Web Server Open Redirect (CVE-2012-4842) and Cross-site Scripting (CVE-2012-4844) Vulnerabilities

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod