PT-2010-4730 · Ibm · Ibm Records Manager

Published

2010-09-13

Updated

2010-09-14

CVE-2010-3319

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Records Manager (RM) versions 4.5.x before 4.5.1.1-IER-FP001

Description The issue allows remote attackers to potentially obtain sensitive information by reading a Referer log file, as a session token is placed in the URI.

Recommendations For versions 4.5.x before 4.5.1.1-IER-FP001, update to version 4.5.1.1-IER-FP001 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2010-3319

Affected Products

Ibm Records Manager

PT-2010-4730 · Ibm · Ibm Records Manager

CVE-2010-3319

Weakness Enumeration

Related Identifiers

Affected Products

References · 3