CVE-2013-4055

Name of the Vulnerable Software and Affected Versions IBM Domino versions 8.5 through 9.0

Description A cross-site scripting (XSS) issue exists in the webadmin.nsf component of the Domino Web Administrator, allowing remote authenticated users to inject arbitrary web script or HTML. This can be achieved via unspecified vectors.

Recommendations For IBM Domino versions 8.5 through 9.0, consider restricting access to the webadmin.nsf component until a fix is available. As a temporary workaround, limit the ability of remote authenticated users to inject web script or HTML in the Domino Web Administrator.