PT-2014-3941 · Ibm · Domino+1
Publicado
2014-05-09
·
Atualizado
2017-08-29
·
CVE-2014-0913
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
IBM iNotes and Domino versions 8.5.3 FP6 before IF2 and 9.0.1 before FP1
Description
The issue allows remote attackers to inject arbitrary web script or HTML via an e-mail message. This is a cross-site scripting (XSS) vulnerability.
Recommendations
For versions 8.5.3 FP6 before IF2, apply the IF2 patch to resolve the issue.
For versions 9.0.1 before FP1, apply the FP1 patch to resolve the issue.
Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Domino
Ibm Inotes