PT-2015-5529 · Ibm · Ibm Domino
Eugene Dokukin
+1
·
Publicado
2015-06-28
·
Atualizado
2019-10-16
·
CVE-2015-1981
CVSS v2.0
2.1
Baixa
| Vetor | AV:N/AC:H/Au:S/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Domino versions 8.5.x before 8.5.3 FP6 IF8
IBM Domino versions 9.x before 9.0.1 FP4
Description
A cross-site scripting (XSS) issue exists in the web server of IBM Domino when Webmail is enabled. This allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Recommendations
For IBM Domino versions 8.5.x before 8.5.3 FP6 IF8, update to version 8.5.3 FP6 IF8 or later.
For IBM Domino versions 9.x before 9.0.1 FP4, update to version 9.0.1 FP4 or later.
Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Domino