PT-2013-4825 · Ibm · Ibm Domino
Publicado
2013-12-21
·
Atualizado
2017-08-29
·
CVE-2013-4063
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Domino versions 8.5.x through 8.5.3 FP5
IBM Domino versions 9.0.x through 9.0.0
Description
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via active content in an e-mail message. This could potentially lead to unauthorized actions on the victim's behalf.
Recommendations
For IBM Domino versions 8.5.x through 8.5.3 FP5, update to version 8.5.3 FP6 or later.
For IBM Domino versions 9.0.x through 9.0.0, update to version 9.0.1 or later.
Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Domino