PT-2014-3919 · Ibm · Ibm Lotus Protector For Mail Security
Publicado
2014-03-25
·
Atualizado
2017-08-29
·
CVE-2014-0885
CVSS v2.0
6.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
IBM Lotus Protector for Mail Security versions 2.8.x through 2.8.0
Description
A cross-site request forgery (CSRF) issue exists in the Admin Web UI, allowing remote authenticated users to hijack the authentication of victims via unknown vectors.
Recommendations
For versions 2.8.x through 2.8.0, update to version 2.8.1-22905 or later to resolve the issue.
Correção
CSRF
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Lotus Protector For Mail Security